Ubuntu Local Security Checks : Ubuntu USN-1381-1 (ubuntuone-couch)

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.71712

Category: Ubuntu Local Security Checks

Title: Ubuntu USN-1381-1 (ubuntuone-couch)

Summary: NOSUMMARY

Description: Description:
The remote host is missing an update to ubuntuone-couch
announced via advisory USN-1381-1.

Details:

It was discovered that Ubuntu One Couch did not perform any server
certificate validation when using HTTPS connections. If a remote attacker
were able to perform a man-in-the-middle attack, this flaw could be
exploited to alter or compromise confidential information.

Solution:
The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.10:
ubuntuone-couch 0.3.0-0ubuntu2.1

http://www.securityspace.com/smysecure/catid.html?in=USN-1381-1

Copyright Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.71712
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-1381-1 (ubuntuone-couch)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to ubuntuone-couch announced via advisory USN-1381-1. Details: It was discovered that Ubuntu One Couch did not perform any server certificate validation when using HTTPS connections. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to alter or compromise confidential information. Solution: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: ubuntuone-couch 0.3.0-0ubuntu2.1 http://www.securityspace.com/smysecure/catid.html?in=USN-1381-1
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com