USN-968-1 -- base-files vulnerabilityID: oval:org.secpod.oval:def:700136 | Date: (C)2011-01-28 (M)2021-06-02 |
Class: PATCH | Family: unix |
It was discovered that the Ubuntu image shipped on some Dell Latitude 2110 systems was accidentally configured to allow unauthenticated package installations. A remote attacker intercepting network communications or a malicious archive mirror server could exploit this to trick the user into installing unsigned packages, resulting in arbitrary code execution with root privileges.
Platform: |
Ubuntu 9.10 |
Ubuntu 10.04 |