David B

**Name of the Vulnerable Software and Affected Versions** Ubuntu Software Center versions 11.10, 11.04, 10.10 **Description** The issue allows remote attackers to execute arbitrary code or obtain sensitive information via a man-in-the-middle (MITM) attack, due to improper validation of server certificates. **Recommendations** For Ubuntu Software Center version 11.10, update the certificate validation mechanism to properly verify server certificates. For Ubuntu Software Center version 11.04, update the certificate validation mechanism to properly verify server certificates. For Ubuntu Software Center version 10.10, update the certificate validation mechanism to properly verify server certificates.