Solution
Please Install the Updated Packages.
Insight
It was discovered that telepathy-idle did not perform any server certificate validation when using SSL connections. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to alter or compromise confidential information.
Affected
telepathy-idle on Ubuntu 13.04 ,
Ubuntu 12.10 ,
Ubuntu 12.04 LTS
Severity
Classification
-
CVE CVE-2007-6746 -
CVSS Base Score: 5.8
AV:N/AC:M/Au:N/C:P/I:P/A:N
Related Vulnerabilities