 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2010-0834 |
| Description: | The base-files package before 5.0.0ubuntu7.1 on Ubuntu 9.10 and before 5.0.0ubuntu20.10.04.2 on Ubuntu 10.04 LTS, as shipped on Dell Latitude 2110 netbooks, does not require authentication for package installation, which allows remote archive servers and man-in-the- middle attackers to execute arbitrary code via a crafted package. |
| Test IDs: | 1.3.6.1.4.1.25623.1.0.68196 1.3.6.1.4.1.25623.1.0.840475 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2010-0834 BugTraq ID: 42280 http://www.securityfocus.com/bid/42280 http://secunia.com/advisories/40889 http://www.ubuntu.com/usn/usn-968-1 http://www.vupen.com/english/advisories/2010/2015 |