CVE

Id
49077  
CVE No.
CVE-2011-1165  
Status
Candidate  
Description
Vino, possibly before 3.2, does not properly document that it opens ports in UPnP routers when the "Configure network to automatically accept connections" setting is enabled, which might make it easier for remote attackers to perform further attacks.  
Phase
Assigned (20110303)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
533486 49077 CVE-2011-1165 MISC:http://www.dslreports.com/forum/r25446313-Ubuntu-computer-hijacked-by-hacker~start=40  View
533487 49077 CVE-2011-1165 MISC:https://bugzilla.redhat.com/show_bug.cgi?id=678846  View
533488 49077 CVE-2011-1165 CONFIRM:http://git.gnome.org/browse/vino/commit/?id=410bbf8e284409bdef02322af4d4a3a388419566  View
533489 49077 CVE-2011-1165 CONFIRM:https://bugzilla.gnome.org/show_bug.cgi?id=594521  View
533490 49077 CVE-2011-1165 REDHAT:RHSA-2013:0169  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
31579 JVNDB-2011-001819 Linux kernel の net/ipv4/netfilter/arp_tables.c における重要な情報を取得される脆弱性 Linux kernel の IPv4 の実装にある net/ipv4/netfilter/arp_tables.c は、構造体メンバの文字列データの終端に、"" 文字を適切に配置しないため、カーネルメモリから重要な情報を取得される脆弱性が存在します。 CVE-2011-1170 49077 2.1 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-001819.html  View