QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2011-4405

Back to search

CVE-2011-4405

Published: Nov 29, 2011

Modified: Aug 7, 2024

PUBLISHED

Description

The cupshelpers scripts in system-config-printer in Ubuntu 11.04 and 11.10, as used by the automatic printer driver download service, uses an "insecure connection" for queries to the OpenPrinting database, which allows remote attackers to execute arbitrary code via a man-in-the-middle (MITM) attack that modifies packages or repositories.

VendorProductVersions

n/a

n/a

affected
n/a

References

46909
third-party-advisory
x_refsource_SECUNIA
50721
vdb-entry
x_refsource_BID
77214
vdb-entry
x_refsource_OSVDB
USN-1265-1
vendor-advisory
x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now