Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

canonical ubuntu linux 11.04 vulnerabilities and exploits

(subscribe to this query)

5
CVSSv2
CVE-2012-0949
The Apport hook in Update Manager as used by Ubuntu 12.04 LTS, 11.10, and 11.04 uploads certain system state archive files when reporting bugs to Launchpad, which allows remote attackers to read repository credentials by viewing a public bug report....
Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04
6.8
CVSSv2
CVE-2011-4408
The Single Sign On Client (ubuntu-sso-client) for Ubuntu 11.04 and 11.10 does not properly validate SSL certificates when using HTTPS, which allows remote attackers to spoof a server and modify or read sensitive data via a man-in-the-middle (MITM) attack....
Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10
6.8
CVSSv2
CVE-2011-3150
Software Center in Ubuntu 11.10, 11.04 10.10 does not properly validate server certificates, which allows remote attackers to execute arbitrary code or obtain sensitive information via a man-in-the-middle (MITM) attack....
Canonical Ubuntu Linux 10.10Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10
7.5
CVSSv2
CVE-2011-4405
The cupshelpers scripts in system-config-printer in Ubuntu 11.04 and 11.10, as used by the automatic printer driver download service, uses an "insecure connection" for queries to the OpenPrinting database, which allows remote attackers to execute arbitrary code via a...
Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10
7.5
CVSSv2
CVE-2011-4409
The Ubuntu One Client for Ubuntu 10.04 LTS, 11.04, 11.10, and 12.04 LTS does not properly validate SSL certificates, which allows remote attackers to spoof a server and modify or read sensitive information via a man-in-the-middle (MITM) attack....
Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04
5
CVSSv2
CVE-2012-0950
The Apport hook (DistUpgradeApport.py) in Update Manager, as used by Ubuntu 12.04 LTS, 11.10, and 11.04, uploads the /var/log/dist-upgrade directory when reporting bugs to Launchpad, which allows remote attackers to read repository credentials by viewing a public bug report. ...
Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04
6.5
CVSSv2
CVE-2011-0730
Eucalyptus before 2.0.3 and Eucalyptus EE before 2.0.2, as used in Ubuntu Enterprise Cloud (UEC) and other products, do not properly interpret signed elements in SOAP requests, which allows man-in-the-middle attackers to execute arbitrary commands by modifying a request, related...
Eucalyptus EucalyptusCanonical Ubuntu Linux 10.04Canonical Ubuntu Linux 10.10Canonical Ubuntu Linux 11.04
4.9
CVSSv2
CVE-2011-2498
The Linux kernel from v2.3.36 before v2.6.39 allows local unprivileged users to cause a denial of service (memory consumption) by triggering creation of PTE pages....
Linux Linux KernelCanonical Ubuntu Linux 11.04Canonical Ubuntu Linux 12.04
6.4
CVSSv2
CVE-2011-3152
DistUpgrade/DistUpgradeFetcherCore.py in Update Manager before 1:0.87.31.1, 1:0.134.x before 1:0.134.11.1, 1:0.142.x before 1:0.142.23.1, 1:0.150.x before 1:0.150.5.1, and 1:0.152.x before 1:0.152.25.5 on Ubuntu 8.04 through 11.10 does not verify the GPG signature before...
Canonical Update-managerCanonical Update-manager 1\\Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 10.10Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10
4.3
CVSSv2
CVE-2011-4407
ppa.py in Software Properties before 0.81.13.3 does not validate the server certificate when downloading PPA GPG key fingerprints, which allows man-in-the-middle (MITM) attackers to spoof GPG keys for a package repository....
Canonical Software-propertiesCanonical Ubuntu Linux 10.04Canonical Ubuntu Linux 10.10Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2021-20661CVE-2020-4953CVE-2018-19518CVE-2021-27645CVE-2021-3156CVE-2021-26684deserializationwireless