Home > Vulnerability Database > CVE-2011-1165

Mend.io Vulnerability Database

CVE-2011-1165

Date: March 12, 2013

Vino, possibly before 3.2, does not properly document that it opens ports in UPnP routers when the "Configure network to automatically accept connections" setting is enabled, which might make it easier for remote attackers to perform further attacks.

Severity Score

5.6

Related Resources (9)

Url: https://bugzilla.redhat.com/show_bug.cgi?id=678846

Url: http://www.dslreports.com/forum/r25446313-Ubuntu-computer-hijacked-by-hacker~start=40

Url: https://nvd.nist.gov/vuln/detail/CVE-2011-1165

Url: http://rhn.redhat.com/errata/RHSA-2013-0169.html

Url: http://git.gnome.org/browse/vino/commit/?id=410bbf8e284409bdef02322af4d4a3a388419566

Url: https://security-tracker.debian.org/tracker/CVE-2011-1165

Url: https://access.redhat.com/security/cve/CVE-2011-1165

Url: https://bugzilla.gnome.org/show_bug.cgi?id=594521

Url: https://www.mend.io/vulnerability-database/CVE-2011-1165

Severity Score

5.6

CVSS v3.1

Base Score:	5.6
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	5.1
Access Vector (AV):	NETWORK
Access Complexity (AC):	HIGH
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2011-1165

Date: March 12, 2013

Severity Score

Related Resources (9)

Severity Score

CVSS v3.1

CVSS v2

Do you need more information?