Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2012-0948

Published: 07/06/2012 Updated: 29/08/2017
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Ubuntu Linux

Vulnerability Summary

DistUpgrade/DistUpgradeMain.py in Update Manager, as used by Ubuntu 12.04 LTS, 11.10, and 11.04, uses weak permissions for (1) apt-clone_system_state.tar.gz and (2) system_state.tar.gz, which allows local users to obtain repository credentials.

Vulnerable Product Search on Vulmon Subscribe to Product

canonical ubuntu linux 11.04

gnome update-manager-core 0.156.14.3

gnome update-manager-core 0.152.25.10

gnome update-manager-core 0.150.5.2

canonical ubuntu linux 12.04

canonical ubuntu linux 11.10

Vendor Advisories

Ubuntu Security Notice: update-manager vulnerabilities
Update Manager could expose sensitive information in certain circumstances ...

References

CWE-264http://www.ubuntu.com/usn/USN-1443-1http://www.securityfocus.com/bid/53604http://secunia.com/advisories/49230http://osvdb.org/82019http://launchpadlibrarian.net/105380733/update-manager_1%3A0.156.14.3_1%3A0.156.14.4.diff.gzhttps://exchange.xforce.ibmcloud.com/vulnerabilities/75727https://usn.ubuntu.com/1443-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook