CVE-2012-0956
Severity CVSS v4.0:
Pending analysis
Type:
CWE-264
Permissions, Privileges, and Access Control
Publication date:
28/09/2012
Last modified:
11/04/2025
Description
ubiquity-slideshow-ubuntu before 58.2, during installation, allows remote man-in-the-middle attackers to execute arbitrary web script or HTML and read arbitrary files via a crafted attribute in the tag of a Twitter feed.
Impact
Base Score 2.0
6.80
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:ubiquity_slideshow_team:ubiquity-slideshow-ubuntu:*:*:*:*:*:*:*:* | 58.1 (including) | |
| cpe:2.3:a:ubiquity_slideshow_team:ubiquity-slideshow-ubuntu:49:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ubiquity_slideshow_team:ubiquity-slideshow-ubuntu:52:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ubiquity_slideshow_team:ubiquity-slideshow-ubuntu:53:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ubiquity_slideshow_team:ubiquity-slideshow-ubuntu:54:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ubiquity_slideshow_team:ubiquity-slideshow-ubuntu:55:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ubiquity_slideshow_team:ubiquity-slideshow-ubuntu:56:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ubiquity_slideshow_team:ubiquity-slideshow-ubuntu:57:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ubiquity_slideshow_team:ubiquity-slideshow-ubuntu:58:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page