Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-4129

Опубликовано: 22 окт. 2012
Источник: nvd
CVSS2: 5.8
EPSS Низкий

Описание

(1) services/twitter/twitter-contact-view.c and (2) services/twitter/twitter-item-view.c in libsocialweb before 0.25.20 automatically connect to Twitter when no Twitter account is set, which might allow remote attackers to obtain sensitive information via a man-in-the-middle (MITM) attack.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gnome:libsocialweb:*:*:*:*:*:*:*:*
Версия до 0.25.19 (включая)
cpe:2.3:a:gnome:libsocialweb:0.25.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.6:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.7:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.8:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.9:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.10:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.11:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.12:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.13:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.14:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.15:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.16:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.17:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsocialweb:0.25.18:*:*:*:*:*:*:*

EPSS

Процентиль: 59%
0.00379
Низкий

5.8 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

ubuntu логотип

CVE-2011-4129

ubuntu
больше 13 лет назад

(1) services/twitter/twitter-contact-view.c and (2) services/twitter/twitter-item-view.c in libsocialweb before 0.25.20 automatically connect to Twitter when no Twitter account is set, which might allow remote attackers to obtain sensitive information via a man-in-the-middle (MITM) attack.

debian логотип

CVE-2011-4129

debian
больше 13 лет назад

1) services/twitter/twitter-contact-view.c and (2) services/twitter/t ...

github логотип

GHSA-35qx-9vmg-3r4c

github
больше 3 лет назад

(1) services/twitter/twitter-contact-view.c and (2) services/twitter/twitter-item-view.c in libsocialweb before 0.25.20 automatically connect to Twitter when no Twitter account is set, which might allow remote attackers to obtain sensitive information via a man-in-the-middle (MITM) attack.

EPSS

Процентиль: 59%
0.00379
Низкий

5.8 Medium

CVSS2

Дефекты

CWE-200