CVE-2016-1252 in apt정보

요약

\~에 의해 MITRE

The apt package in Debian jessie before 1.0.9.8.4, in Debian unstable before 1.4~beta2, in Ubuntu 14.04 LTS before 1.0.1ubuntu2.17, in Ubuntu 16.04 LTS before 1.2.15ubuntu0.2, and in Ubuntu 16.10 before 1.3.2ubuntu0.1 allows man-in-the-middle attackers to bypass a repository-signing protection mechanism by leveraging improper error handling when validating InRelease file signatures.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

예약하다

2015. 12. 27.

공개

2017. 12. 05.

모더레이션

수락

항목

VDB-94561

CPE

준비됨

CWE

CWE-417 (확인됨)

익스플로잇

다운로드

CVSS

5.9 (NVD)

EPSS

0.05955

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-1252
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-1252
CVE Details	https://www.cvedetails.com/cve/CVE-2016-1252/

◂ 이전 개요 다음 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!