Candidate: CVE-2011-2329
PublicDate: 2011-06-02 20:55:00 UTC
PublicDateAtUSN: 2011-05-26
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2329
 https://ubuntu.com/security/notices/USN-1137-1
Description:
 The rampart_timestamp_token_validate function in
 util/rampart_timestamp_token.c in Apache Rampart/C 1.3.0 does not properly
 calculate the expiration of timestamp tokens, which allows remote attackers
 to bypass intended access restrictions by leveraging an expired token, a
 different vulnerability than CVE-2011-0730.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: Daviey
CVSS: 

Patches_rampart:
upstream_rampart: needs-triage
hardy_rampart: DNE
lucid_rampart: released (1.3.0-0ubuntu7.1)
maverick_rampart: released (1.3.0-1ubuntu1.1)
natty_rampart: released (1.3.0-1ubuntu2.1)
devel_rampart: released (1.3.0-1ubuntu3)