CVE-2011-0724

Published: Feb 19, 2011Modified: Apr 29, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

The Live DVD for Edubuntu 9.10, 10.04 LTS, and 10.10 does not correctly regenerate iTALC private keys after installation, which causes each installation to have the same fixed key, which allows remote attackers to gain privileges.

Affected (4)

Products: Ubuntu: Edubuntu, Live Dvd

Ubuntu

2 products

Edubuntu

Live Dvd

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Ubuntu Edubuntu	Version 10.04
Ubuntu Edubuntu	Version 10.10
Ubuntu Edubuntu	Version 9.10
Ubuntu Live Dvd	All versions

Related CWEs

CWE-310

References (8)

http://www.securityfocus.com/bid/46346

Source: security@ubuntu.com

http://www.ubuntu.com/usn/USN-1061-1

Source: security@ubuntu.com

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0378

Source: security@ubuntu.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/65389

Source: security@ubuntu.com

http://www.securityfocus.com/bid/46346

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-1061-1

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0378

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/65389

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.