The Live DVD for Edubuntu 9.10, 10.04 LTS, and 10.10 does not correctly regenerate iTALC private keys after installation, which causes each installation to have the same fixed key, which allows remote attackers to gain privileges.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/46346 | |
http://www.ubuntu.com/usn/USN-1061-1 | Vendor Advisory |
http://www.vupen.com/english/advisories/2011/0378 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/65389 |
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2011-02-19 01:00
Updated : 2024-02-28 11:41
NVD link : CVE-2011-0724
Mitre link : CVE-2011-0724
CVE.ORG link : CVE-2011-0724
JSON object : View
Products Affected
ubuntu
- live_dvd
- edubuntu
CWE
CWE-310
Cryptographic Issues