SSL Certificate Validation Vulnerability in Ubuntu One Client

CVE-2011-4409 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The Ubuntu One Client for Ubuntu 10.04 LTS, 11.04, 11.10, and 12.04 LTS does not properly validate SSL certificates, which allows remote attackers to spoof a server and modify or read sensitive information via a man-in-the-middle (MITM) attack.

Learn more about our Cis Benchmark Audit For Server Software.