NVD

Id
45892  
Name
CVE-2012-4511  
Description
services/flickr/flickr.c in libsocialweb before 0.25.21 automatically connects to Flickr when no Flickr account is set, which might allow remote attackers to obtain sensitive information via a man-in-the-middle (MITM) attack.  
Reject
 
CVSS Version
2  
CVSS Score
5.8  
Severity
Medium  
CVSS Base Score
5.8  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:N)  
Pub Date
2017-01-19  
Published
2012-10-22  
Modified Date
2017-01-05  
Seq
2012-4511  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
230437 45892 CVE-2012-4511 http://git.gnome.org/browse/libsocialweb/commit/?id=8c28ae1d5db5529020652cee3700c75341625503  View
230438 45892 CVE-2012-4511 [oss-security] 20121010 CVE request: libsocialweb untrusted connection to flickr  View
230439 45892 CVE-2012-4511 [oss-security] 20121010 Re: CVE request: libsocialweb untrusted connection to flickr  View
230440 45892 CVE-2012-4511 [oss-security] 20121023 Wrong affected version in the CVE-2012-4511  View
230441 45892 CVE-2012-4511 https://bugzilla.redhat.com/show_bug.cgi?id=863206  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
29387 JVNDB-2012-005094 libsocialweb における重要な情報を取得される脆弱性 libsocialweb の services/flickr/flickr.c には、Flickr アカウントが設定されていない場合、自動的に Flickr へ接続するため、重要な情報を取得される脆弱性が存在します。 CVE-2012-4511 57749 CVE-2012-4511 45892 5.8 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005094.html 2012-10-22 2012-10-24 View