maas-import-pxe-files in MAAS prior to 13.10 does not verify the integrity of downloaded files, which allows remote malicious users to modify these files via a man-in-the-middle (MITM) attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
canonical ubuntu linux 13.04 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 12.04 |
||
canonical maas |
||
canonical maas 12.04.2 |
||
canonical maas 12.04.3 |
||
canonical maas 12.04.1 |