CVE-2008-1902

The GUI for aptlinex before 0.91 does not sufficiently warn the user of potentially dangerous actions, which allows remote attackers to remove or modify packages via an apt:// URL.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 47%
VendorProductVersion
debianaptlinex
0.6-1
debianaptlinex
0.7-1
debianaptlinex
0.8-1
debianaptlinex
0.8-2
debianaptlinex
0.9-1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
aptlinex
hardy
dne
gutsy
dne
feisty
dne
dapper
dne
References
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476572
https://exchange.xforce.ibmcloud.com/vulnerabilities/41954
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476572
https://exchange.xforce.ibmcloud.com/vulnerabilities/41954