CVE-2011-1165

Exploit

EPSS 0.67%
Veröffentlicht 12.03.2013 23:55:01
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

Vino, possibly before 3.2, does not properly document that it opens ports in UPnP routers when the "Configure network to automatically accept connections" setting is enabled, which might make it easier for remote attackers to perform further attacks.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

David King ≫ Vino Version <= 3.1.92

David King ≫ Vino Version0.12

David King ≫ Vino Version0.14

David King ≫ Vino Version2.7

David King ≫ Vino Version2.7.3

David King ≫ Vino Version2.7.3.1

David King ≫ Vino Version2.7.4

David King ≫ Vino Version2.7.4.90

David King ≫ Vino Version2.7.4.91

David King ≫ Vino Version2.7.90

David King ≫ Vino Version2.7.91

David King ≫ Vino Version2.7.92

David King ≫ Vino Version2.8

David King ≫ Vino Version2.8.0

David King ≫ Vino Version2.8.0.1

David King ≫ Vino Version2.8.1

David King ≫ Vino Version2.9

David King ≫ Vino Version2.9.2

David King ≫ Vino Version2.10

David King ≫ Vino Version2.11

David King ≫ Vino Version2.11.1

David King ≫ Vino Version2.11.1.1

David King ≫ Vino Version2.11.1.2

David King ≫ Vino Version2.11.90

David King ≫ Vino Version2.11.92

David King ≫ Vino Version2.12

David King ≫ Vino Version2.13

David King ≫ Vino Version2.13.5

David King ≫ Vino Version2.14

David King ≫ Vino Version2.15

David King ≫ Vino Version2.16

David King ≫ Vino Version2.17

David King ≫ Vino Version2.17.2

David King ≫ Vino Version2.17.4

David King ≫ Vino Version2.17.5

David King ≫ Vino Version2.17.92

David King ≫ Vino Version2.18

David King ≫ Vino Version2.18.1

David King ≫ Vino Version2.19

David King ≫ Vino Version2.19.5

David King ≫ Vino Version2.19.90

David King ≫ Vino Version2.19.92

David King ≫ Vino Version2.20

David King ≫ Vino Version2.20.1

David King ≫ Vino Version2.21

David King ≫ Vino Version2.21.1

David King ≫ Vino Version2.21.2

David King ≫ Vino Version2.21.3

David King ≫ Vino Version2.21.90

David King ≫ Vino Version2.21.91

David King ≫ Vino Version2.21.92

David King ≫ Vino Version2.22

David King ≫ Vino Version2.22.1

David King ≫ Vino Version2.22.2

David King ≫ Vino Version2.23

David King ≫ Vino Version2.23.5

David King ≫ Vino Version2.23.90

David King ≫ Vino Version2.23.91

David King ≫ Vino Version2.23.92

David King ≫ Vino Version2.24

David King ≫ Vino Version2.24.1

David King ≫ Vino Version2.25

David King ≫ Vino Version2.25.3

David King ≫ Vino Version2.25.4

David King ≫ Vino Version2.25.5

David King ≫ Vino Version2.25.90

David King ≫ Vino Version2.25.91

David King ≫ Vino Version2.25.92

David King ≫ Vino Version2.26

David King ≫ Vino Version2.26.1

David King ≫ Vino Version2.26.2

David King ≫ Vino Version2.27

David King ≫ Vino Version2.27.5

David King ≫ Vino Version2.27.90

David King ≫ Vino Version2.27.91

David King ≫ Vino Version2.27.92

David King ≫ Vino Version2.28

David King ≫ Vino Version2.28.1

David King ≫ Vino Version2.28.2

David King ≫ Vino Version2.28.3

David King ≫ Vino Version2.31.4

David King ≫ Vino Version2.31.91

David King ≫ Vino Version2.32.0

David King ≫ Vino Version2.32.1

David King ≫ Vino Version2.32.2

David King ≫ Vino Version2.99.0

David King ≫ Vino Version2.99.1

David King ≫ Vino Version2.99.2

David King ≫ Vino Version2.99.3

David King ≫ Vino Version2.99.4

David King ≫ Vino Version2.99.5

David King ≫ Vino Version3.0.0

David King ≫ Vino Version3.0.1

David King ≫ Vino Version3.0.2

David King ≫ Vino Version3.0.3

David King ≫ Vino Version3.1

David King ≫ Vino Version3.1.1

David King ≫ Vino Version3.1.2

David King ≫ Vino Version3.1.3

David King ≫ Vino Version3.1.4

David King ≫ Vino Version3.1.5

David King ≫ Vino Version3.1.90

David King ≫ Vino Version3.1.91

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.67%	0.707

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.1	4.9	6.4	AV:N/AC:H/Au:N/C:P/I:P/A:P

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://rhn.redhat.com/errata/RHSA-2013-0169.html

http://git.gnome.org/browse/vino/commit/?id=410bbf8e284409bdef02322af4d4a3a388419566

Patch

Exploit

http://www.dslreports.com/forum/r25446313-Ubuntu-computer-hijacked-by-hacker~start=40

https://bugzilla.gnome.org/show_bug.cgi?id=594521

https://bugzilla.redhat.com/show_bug.cgi?id=678846

https://nvd.nist.gov/vuln/detail/CVE-2011-1165

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-1165

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-1165

EUVD