ubiquity-slideshow-ubuntu prior to 58.2, during installation, allows remote man-in-the-middle malicious users to execute arbitrary web script or HTML and read arbitrary files via a crafted attribute in the <a> tag of a Twitter feed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ubiquity slideshow team ubiquity-slideshow-ubuntu 58 |
||
ubiquity slideshow team ubiquity-slideshow-ubuntu 57 |
||
ubiquity slideshow team ubiquity-slideshow-ubuntu 56 |
||
ubiquity slideshow team ubiquity-slideshow-ubuntu 55 |
||
ubiquity slideshow team ubiquity-slideshow-ubuntu |
||
ubiquity slideshow team ubiquity-slideshow-ubuntu 54 |
||
ubiquity slideshow team ubiquity-slideshow-ubuntu 52 |
||
ubiquity slideshow team ubiquity-slideshow-ubuntu 53 |
||
ubiquity slideshow team ubiquity-slideshow-ubuntu 49 |