Insecure Certificate Validation in Ubuntu Software Center

Insecure Certificate Validation in Ubuntu Software Center

CVE-2011-3150 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Software Center in Ubuntu 11.10, 11.04 10.10 does not properly validate server certificates, which allows remote attackers to execute arbitrary code or obtain sensitive information via a man-in-the-middle (MITM) attack.

Learn more about our Cis Benchmark Audit For Server Software.