Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5356

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2012-5356
Last Modified 30 Jan 2013 12:00:00
Published 10 Oct 2012 02:55:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-5356

Summary

The apt-add-repository tool in Ubuntu Software Properties 0.75.x before 0.75.10.3, 0.80.x before 0.80.9.2, 0.81.x before 0.81.13.5, 0.82.x before 0.82.7.3, and 0.92.x before 0.92.8 does not properly check PPA GPG keys imported from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-the-middle (MITM) attack.

Vulnerable Systems

Application

  • Canonical Ubuntu Software Properties 0.75.10

  • Canonical Ubuntu Software Properties 0.75.10.1

  • Canonical Ubuntu Software Properties 0.75.10.2

  • Canonical Ubuntu Software Properties 0.75.4

  • Canonical Ubuntu Software Properties 0.75.5

  • Canonical Ubuntu Software Properties 0.75.6

  • Canonical Ubuntu Software Properties 0.75.7

  • Canonical Ubuntu Software Properties 0.75.8

  • Canonical Ubuntu Software Properties 0.75.9

  • Canonical Ubuntu Software Properties 0.76.7

  • Canonical Ubuntu Software Properties 0.77

  • Canonical Ubuntu Software Properties 0.78

  • Canonical Ubuntu Software Properties 0.78.1

  • Canonical Ubuntu Software Properties 0.80

  • Canonical Ubuntu Software Properties 0.80.10

  • Canonical Ubuntu Software Properties 0.80.11

  • Canonical Ubuntu Software Properties 0.80.12

  • Canonical Ubuntu Software Properties 0.80.13

  • Canonical Ubuntu Software Properties 0.80.2

  • Canonical Ubuntu Software Properties 0.80.3

  • Canonical Ubuntu Software Properties 0.80.4

  • Canonical Ubuntu Software Properties 0.80.5

  • Canonical Ubuntu Software Properties 0.80.6

  • Canonical Ubuntu Software Properties 0.80.7

  • Canonical Ubuntu Software Properties 0.80.8

  • Canonical Ubuntu Software Properties 0.80.9

  • Canonical Ubuntu Software Properties 0.80.9.1

  • Canonical Ubuntu Software Properties 0.81

  • Canonical Ubuntu Software Properties 0.81.1

  • Canonical Ubuntu Software Properties 0.81.10

  • Canonical Ubuntu Software Properties 0.81.11

  • Canonical Ubuntu Software Properties 0.81.13

  • Canonical Ubuntu Software Properties 0.81.13.1

  • Canonical Ubuntu Software Properties 0.81.13.2

  • Canonical Ubuntu Software Properties 0.81.13.3

  • Canonical Ubuntu Software Properties 0.81.13.4

  • Canonical Ubuntu Software Properties 0.81.2

  • Canonical Ubuntu Software Properties 0.81.3

  • Canonical Ubuntu Software Properties 0.81.4

  • Canonical Ubuntu Software Properties 0.81.5

  • Canonical Ubuntu Software Properties 0.81.6

  • Canonical Ubuntu Software Properties 0.81.7

  • Canonical Ubuntu Software Properties 0.81.8

  • Canonical Ubuntu Software Properties 0.81.9

  • Canonical Ubuntu Software Properties 0.82

  • Canonical Ubuntu Software Properties 0.82.2

  • Canonical Ubuntu Software Properties 0.82.3

  • Canonical Ubuntu Software Properties 0.82.4

  • Canonical Ubuntu Software Properties 0.82.5

  • Canonical Ubuntu Software Properties 0.82.6

  • Canonical Ubuntu Software Properties 0.82.7

  • Canonical Ubuntu Software Properties 0.82.7.1

  • Canonical Ubuntu Software Properties 0.82.7.2

  • Canonical Ubuntu Software Properties 0.83

  • Canonical Ubuntu Software Properties 0.84

  • Canonical Ubuntu Software Properties 0.85

  • Canonical Ubuntu Software Properties 0.86

  • Canonical Ubuntu Software Properties 0.87

  • Canonical Ubuntu Software Properties 0.88

  • Canonical Ubuntu Software Properties 0.89

  • Canonical Ubuntu Software Properties 0.90

  • Canonical Ubuntu Software Properties 0.91

  • Canonical Ubuntu Software Properties 0.92

  • Canonical Ubuntu Software Properties 0.92.2

  • Canonical Ubuntu Software Properties 0.92.3

  • Canonical Ubuntu Software Properties 0.92.4

  • Canonical Ubuntu Software Properties 0.92.5

  • Canonical Ubuntu Software Properties 0.92.6

  • Canonical Ubuntu Software Properties 0.92.7


References

MISC - https://bugs.launchpad.net/ubuntu/+source/software-properties/+bug/1016643

XF - ubuntu-gpg-sec-bypass(78990)

UBUNTU - USN-1588-1

BID - 55736


Last Updated: 27 May 2016 11:00:58