Ubuntu Update For System-config-printer USN-1265-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1265-1

Solution

Please Install the Updated Packages.

Insight

Marc Deslauriers discovered that system-config-printer's cupshelpers scripts used by the Ubuntu automatic printer driver download service queried the OpenPrinting database using an insecure connection. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to install altered packages and repositories.

Affected

system-config-printer on Ubuntu 11.04

Severity

Classification

CVE CVE-2011-4405
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Ubuntu Update for coreutils USN-2473-1
Ubuntu Update for clamav USN-1773-1
Ubuntu Update for cups-filters USN-2210-1
Ubuntu Update for devscripts USN-1366-1
Ubuntu Update for bogofilter USN-1667-1

Ubuntu Update for system-config-printer USN-1265-1

Take action and discover your vulnerabilities