CVE-2011-0724
First published: Fri Feb 18 2011(Updated: )
The Live DVD for Edubuntu 9.10, 10.04 LTS, and 10.10 does not correctly regenerate iTALC private keys after installation, which causes each installation to have the same fixed key, which allows remote attackers to gain privileges.
Credit: security@ubuntu.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ubuntu | =9.10 | |
| Ubuntu | =10.04 | |
| Ubuntu | =10.10 | |
| Ubuntu |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2011-0724?
CVE-2011-0724 is considered a high-severity vulnerability due to its potential to allow unauthorized remote access.
How does CVE-2011-0724 affect the Live DVD for Edubuntu?
CVE-2011-0724 affects the Live DVD for Edubuntu by not regenerating iTALC private keys, leading to fixed keys across installations.
What are the recommended measures to mitigate CVE-2011-0724?
To mitigate CVE-2011-0724, it is advised to change the iTALC private keys post-installation to ensure unique security.
Which versions of Edubuntu are affected by CVE-2011-0724?
CVE-2011-0724 affects Edubuntu versions 9.10, 10.04 LTS, and 10.10.
Can CVE-2011-0724 lead to privilege escalation?
Yes, CVE-2011-0724 can lead to privilege escalation, enabling remote attackers to gain elevated privileges.
- collector/nvd-historical
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ubuntu
- canonical/ubuntu
- version/ubuntu/9.10
- version/ubuntu/10.04
- version/ubuntu/10.10