CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-4405

The cupshelpers scripts in system-config-printer in Ubuntu 11.04 and 11.10, as used by the automatic printer driver download service, uses an "insecure connection" for queries to the OpenPrinting database, which allows remote attackers to execute arbitrary code via a man-in-the-middle (MITM) attack that modifies packages or repositories.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.02

EPSS Ranking 82.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/77214
http://secunia.com/advisories/46909
http://www.securityfocus.com/bid/50721
http://www.ubuntu.com/usn/USN-1265-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/71394
http://osvdb.org/77214
http://secunia.com/advisories/46909
http://www.securityfocus.com/bid/50721
http://www.ubuntu.com/usn/USN-1265-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/71394

Products affected by CVE-2011-4405

Canonical » Ubuntu Linux » Version: 11.04

cpe:2.3:o:canonical:ubuntu_linux:11.04
Canonical » Ubuntu Linux » Version: 11.10

cpe:2.3:o:canonical:ubuntu_linux:11.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-4405

Products

Pricing

Contact Us