This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:linux:linux_kernel:2.6.24:rc3
Detail
VendorLinuxFirst view 2007-12-03
ProductLinux KernelLast view 2014-06-23
Version2.6.24TypeOs
Edition 
Language 
Updaterc3 
 
CPE Productcpe:/o:linux:linux_kernel

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.9 2014-06-23 CVE-2014-0203 Local Low None Requ...
6.6 2013-11-20 CVE-2013-4588 Local Medium Requires ...
6.9 2013-07-16 CVE-2013-1943 Local Medium None Requ...
4.3 2013-06-08 CVE-2011-4087 Network Medium None Requ...
7.8 2013-06-08 CVE-2011-2482 Network Low None Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
3.3 2013-06-08 CVE-2011-1585 Local Medium None Requ...
7.5 2013-06-08 CVE-2011-1180 Network Low None Requ...
4.9 2013-06-07 CVE-2013-2128 Local Low None Requ...
4 2013-03-01 CVE-2011-3638 Local High None Requ...
4.9 2013-03-01 CVE-2011-2491 Local Low None Requ...
4.9 2013-03-01 CVE-2011-2479 Local Low None Requ...
3.6 2013-03-01 CVE-2011-1182 Local Low None Requ...
1.9 2013-03-01 CVE-2011-1019 Local Medium None Requ...
5.4 2012-10-03 CVE-2012-3552 Network High None Requ...
4 2012-05-24 CVE-2011-4080 Local High None Requ...
5.4 2012-05-24 CVE-2011-3363 Network High None Requ...
5.4 2012-05-24 CVE-2011-3359 Network High None Requ...
4.9 2012-05-24 CVE-2011-2521 Local Low None Requ...
4.9 2012-05-24 CVE-2011-2518 Local Low None Requ...
7.2 2012-05-24 CVE-2011-2517 Local Low None Requ...
4.9 2012-05-17 CVE-2012-0879 Local Low None Requ...
4.9 2012-05-17 CVE-2011-4621 Local Low None Requ...
4.9 2012-05-17 CVE-2011-4611 Local Low None Requ...
7.1 2012-05-17 CVE-2011-4326 Network Medium None Requ...

CWE : Common Weakness Enumeration

%idName
19% (44)CWE-399Resource Management Errors
16% (37)CWE-20Improper Input Validation
15% (36)CWE-189Numeric Errors
15% (35)CWE-200Information Exposure
13% (31)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
Hide | Show 5 More...
%idName
9% (22)CWE-264Permissions, Privileges, and Access Controls
5% (12)CWE-362Race Condition
2% (6)CWE-16Configuration
0% (2)CWE-94Failure to Control Generation of Code ('Code Injection')
0% (1)CWE-310Cryptographic Issues

CAPEC : Common Attack Pattern Enumeration & Classification

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idName
CAPEC-3Using Leading 'Ghost' Character Sequences to Bypass Input Filters
CAPEC-7Blind SQL Injection
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
Hide | Show 20 More...
idName
CAPEC-13Subverting Environment Variable Values
CAPEC-14Client-side Injection-induced Buffer Overflow
CAPEC-18Embedding Scripts in Nonscript Elements
CAPEC-22Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-24Filter Failure through Buffer Overflow
CAPEC-28Fuzzing
CAPEC-31Accessing/Intercepting/Modifying HTTP Cookies
CAPEC-32Embedding Scripts in HTTP Query Strings
CAPEC-42MIME Conversion
CAPEC-43Exploiting Multiple Input Interpretation Layers
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-52Embedding NULL Bytes
CAPEC-53Postfix, Null Terminate, and Backslash
CAPEC-63Simple Script Injection
CAPEC-64Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC-66SQL Injection
CAPEC-67String Format Overflow in syslog()
CAPEC-71Using Unicode Encoding to Bypass Validation Logic

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:10719The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2...
oval:org.mitre.oval:def:10053fs/direct-io.c in the dio subsystem in the Linux kernel before 2.6.23 does no...
oval:org.mitre.oval:def:7882DSA-1494 linux-2.6 -- missing access checks
oval:org.mitre.oval:def:17497USN-577-1 -- linux-source-2.6.17/20/22 vulnerability
oval:org.mitre.oval:def:11358The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 does no...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:22451ELSA-2008:0129: kernel security update (Important)
oval:org.mitre.oval:def:7816DSA-1565 linux-2.6 -- several vulnerabilities
oval:org.mitre.oval:def:19757DSA-1565-1 linux-2.6 - several vulnerabilities
oval:org.mitre.oval:def:11843Race condition in the directory notification subsystem (dnotify) in Linux ker...
oval:org.mitre.oval:def:9555arch/s390/kernel/ptrace.c in Linux kernel 2.6.9, and other versions before 2....
oval:org.mitre.oval:def:7941DSA-1575 linux-2.6 -- denial of service
oval:org.mitre.oval:def:20120DSA-1575-1 linux-2.6 - denial of service
oval:org.mitre.oval:def:17771USN-618-1 -- linux-source-2.6.15/20/22 vulnerabilities
oval:org.mitre.oval:def:10065Linux kernel before 2.6.25.2 does not apply a certain protection mechanism fo...
oval:org.mitre.oval:def:21800ELSA-2008:0233: kernel security and bug fix update (Important)
oval:org.mitre.oval:def:10749Race condition in the ptrace and utrace support in the Linux kernel 2.6.9 thr...
oval:org.mitre.oval:def:6633Linux Kernel TTY Operations NULL Pointer Dereference Denial of Service Vulner...
oval:org.mitre.oval:def:11632The Linux kernel before 2.6.25.10 does not properly perform tty operations, w...
oval:org.mitre.oval:def:22645ELSA-2008:0612: kernel security and bug fix update (Important)
oval:org.mitre.oval:def:17496USN-625-1 -- linux, linux-source-2.6.15/20/22 vulnerabilities
oval:org.mitre.oval:def:11182The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth....
oval:org.mitre.oval:def:22656ELSA-2008:0885: kernel security and bug fix update (Important)
oval:org.mitre.oval:def:8183DSA-1630 linux-2.6 -- denial of service/information leak
oval:org.mitre.oval:def:6551Linux Kernel UBIFS Orphan Inode Local Denial of Service Vulnerability
oval:org.mitre.oval:def:18465DSA-1630-1 fai-kernels linux-2.6 user-mode-linux - several vulnerabilities

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
78302Linux Kernel m_stop() Implementation Local DoS
77684Linux Kernel OMAP4 Bridge Networking Interface Network Packet Parsing Remote DoS
77295Linux Kernel UFO IPv6 UDP Datagram Parsing Remote DoS
77293Linux Kernel b43 Driver Wireless Interface Frame Parsing Remote DoS
76805Linux Kernel net/core/net_namespace.c Network Namespace Cleanup Weakness Remo...
Hide | Show 20 More...
idDescription
76666Linux Kernel ext4 Extent Splitting BUG_ON() Local DoS
76177Linux Kernel Performance Events NMI Watchdog Local DoS
75580Linux Kernel CIFS Share Mounting DIFS Referral BUG_ON() Remote DoS
75240Linux Kernel Stream Control Transmission Protocol (SCTP) Packet Handling Remo...
74881Linux Kernel si4713-i2c si4713_write_econtrol_string Function Radio Driver Lo...
74823Linux Kernel fs/befs/linuxvfs.c befs_follow_link Function Be Filesystem Symli...
74679Linux Kernel Bluetooth net/bluetooth/l2cap_core.c l2cap_config_req Function O...
74661Linux Kernel mount.cifs Password Protected Mounted CIFS Share Hijacking Weakness
74660Linux Kernel NFS Server File Locking Local DoS
74658Linux Kernel trigger_scan / sched_scan SSID Length Handling Bypass
74657Linux Kernel Packet Scheduler API Implementation tc_fill_qdisc() Function NUL...
74654Linux Kernel EFI GUID Partition Table (GPT) Implementation Crafted Partition ...
74653Linux Kernel net/ipv4/inet_diag.c inet_diag_bc_audit() Function Local DoS
74645Linux Kernel Common Internet File System (CIFS) Implementation cifs_close() F...
74643Linux Kernel dev_load() Function CAP_NET_ADMIN Capability Arbitrary Module Lo...
74639Linux Kernel IrDA Module Peer name / attribute Handling Local Memory Corruption
74635Linux Kernel AARESOLVE_OFFSET Memory Overwrite Local Privilege Escalation
74138Linux Kernel GRO include/linux/netdevice.h skb_gro_header_slow() Function Rem...
74123Linux Kernel ext4 Subsystem Extent Format Sparse File Off-by-one Local DoS
73882Linux Kernel DCCP net/dccp/input.c dccp_rcv_state_process Function CLOSED End...

Milw0rm Exploits

idDescription
2008-02-09Linux Kernel 2.6.23 - 2.6.24 vmsplice Local Root Exploit
2008-02-09Linux Kernel 2.6.17 - 2.6.24.1 vmsplice Local Root Exploit

ExploitDB Exploits

idDescription
17787Linux Kernel < 2.6.36.2 Econet Privilege Escalation Exploit
16973Linux <= 2.6.37-rc1 serial_core TIOCGICOUNT Leak Exploit
16952Linux Kernel < 2.6.37-rc2 TCP_MAXSEG Kernel Panic DoS
16263Linux Kernel <= 2.6.37 Local Kernel Denial of Service
15774Linux Kernel < 2.6.37-rc2 ACPI custom_method Privilege Escalation
Hide | Show 6 More...
idDescription
15704Linux Kernel <= 2.6.37 - Local Privilege Escalation
15344Linux Kernel VIDIOCSMICROCODE IOCTL Local Memory Overwrite Vulnerability
15285Linux RDS Protocol Local Privilege Escalation
15150Linux Kernel < 2.6.36-rc6 pktcdvd Kernel Memory Disclosure
14814Linux Kernel < 2.6.36-rc1 CAN BCM Privilege Escalation Exploit
14594Linux Kernel <= 2.6.33.3 SCTP INIT Remote DoS

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-18Name : Debian Security Advisory DSA 2389-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2389_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2469-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2469_1.nasl
2012-12-06Name : RedHat Update for kernel RHSA-2012:1540-01
File : nvt/gb_RHSA-2012_1540-01_kernel.nasl
2012-12-06Name : CentOS Update for kernel CESA-2012:1540 centos5
File : nvt/gb_CESA-2012_1540_kernel_centos5.nasl
2012-09-27Name : RedHat Update for kernel RHSA-2012:1304-01
File : nvt/gb_RHSA-2012_1304-01_kernel.nasl
Hide | Show 20 More...
idDescription
2012-09-27Name : CentOS Update for kernel CESA-2012:1304 centos6
File : nvt/gb_CESA-2012_1304_kernel_centos6.nasl
2012-08-31Name : VMSA-2012-0013 VMware vSphere and vCOps updates to third party libraries.
File : nvt/gb_VMSA-2012-0013.nasl
2012-08-02Name : SuSE Update for kernel openSUSE-SU-2012:0206-1 (kernel)
File : nvt/gb_suse_2012_0206_1.nasl
2012-08-02Name : SuSE Update for kernel openSUSE-SU-2012:0236-1 (kernel)
File : nvt/gb_suse_2012_0236_1.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:1212 centos5 x86_64
File : nvt/gb_CESA-2011_1212_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0004 centos5 x86_64
File : nvt/gb_CESA-2011_0004_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0162 centos4 x86_64
File : nvt/gb_CESA-2011_0162_kernel_centos4_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2012:0862 centos6
File : nvt/gb_CESA-2012_0862_kernel_centos6.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0303 centos5 x86_64
File : nvt/gb_CESA-2011_0303_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2012:1061 centos5
File : nvt/gb_CESA-2012_1061_kernel_centos5.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:1386 centos5 x86_64
File : nvt/gb_CESA-2011_1386_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0429 centos5 x86_64
File : nvt/gb_CESA-2011_0429_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:1479 centos5 x86_64
File : nvt/gb_CESA-2011_1479_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0833 centos5 x86_64
File : nvt/gb_CESA-2011_0833_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2012:0007 centos5
File : nvt/gb_CESA-2012_0007_kernel_centos5.nasl
2012-07-30Name : CentOS Update for kernel CESA-2012:0107 centos5
File : nvt/gb_CESA-2012_0107_kernel_centos5.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0927 centos5 x86_64
File : nvt/gb_CESA-2011_0927_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:1065 centos5 x86_64
File : nvt/gb_CESA-2011_1065_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2012:0350 centos6
File : nvt/gb_CESA-2012_0350_kernel_centos6.nasl
2012-07-30Name : CentOS Update for kernel CESA-2010:0936 centos4 x86_64
File : nvt/gb_CESA-2010_0936_kernel_centos4_x86_64.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2012-A-0153Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0033884
2012-A-0148Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0033794
2012-A-0056Multiple Vulnerabilities in VMWare ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0031979
2012-A-0020Multiple Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity : Category I - VMSKEY : V0031252
2011-A-0147Multiple Vulnerabilities in VMware ESX and ESXi
Severity : Category I - VMSKEY : V0030545
Hide | Show 4 More...
idDescription
2011-A-0066Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0027158
2010-B-0085Linux Kernel Privilege Escalation Vulnerability
Severity : Category I - VMSKEY : V0025410
2010-A-0015Multiple Vulnerabilities in Red Hat Linux Kernel
Severity : Category I - VMSKEY : V0022631
2009-A-0105Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0021867

Snort® IPS/IDS

DateDescription
2014-01-10Linux kernel IA32 out-of-bounds system call attempt
RuleID : 24371 - Type : OS-LINUX - Revision : 4
2014-01-10Linux kernel IA32 out-of-bounds system call attempt
RuleID : 24370 - Type : OS-LINUX - Revision : 5
2014-01-10Linux Kernel nfsd v4 CAP_MKNOD security bypass attempt
RuleID : 17749 - Type : PROTOCOL-RPC - Revision : 3
2014-01-10Linux kernel sctp_process_unk_param SCTPChunkInit buffer overflow attempt
RuleID : 16724 - Type : OS-LINUX - Revision : 3
2014-01-10Linux Kernel nfsd v3 tcp CAP_MKNOD security bypass attempt
RuleID : 16702 - Type : PROTOCOL-RPC - Revision : 3
Hide | Show 6 More...
DateDescription
2014-01-10Linux Kernel nfsd v3 udp CAP_MKNOD security bypass attempt
RuleID : 16701 - Type : PROTOCOL-RPC - Revision : 4
2014-01-10Linux Kernel nfsd v2 tcp CAP_MKNOD security bypass attempt
RuleID : 16700 - Type : PROTOCOL-RPC - Revision : 3
2014-01-10Linux Kernel nfsd v2 udp CAP_MKNOD security bypass attempt
RuleID : 16699 - Type : PROTOCOL-RPC - Revision : 4
2014-01-10Microsoft Windows TCP stack zero window size exploit attempt
RuleID : 16294 - Type : OS-WINDOWS - Revision : 9
2014-01-10TCP window closed before receiving data
RuleID : 15912 - Type : BAD-TRAFFIC - Revision : 6
2014-01-10linux kernel snmp nat netfilter memory corruption attempt
RuleID : 13773 - Type : DOS - Revision : 6

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-07-22Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2011-1253.nasl - Type : ACT_GATHER_INFO
2014-07-22Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-0010.nasl - Type : ACT_GATHER_INFO
2014-06-23Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2014-0771.nasl - Type : ACT_GATHER_INFO
2014-06-23Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-3043.nasl - Type : ACT_GATHER_INFO
2014-06-20Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-0771.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2014-06-20Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2014-0771.nasl - Type : ACT_GATHER_INFO
2014-06-20Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20140619_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-756.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-100915.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-100921.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-101008.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-101026.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-101215.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-110414.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-110726.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-111026.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-120104.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-235.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_kernel-110426.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_kernel-110726.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_kernel-111026.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_kernel-120104.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_Kernel-100824.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-342.nasl - Type : ACT_GATHER_INFO
2014-01-05Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2064-1.nasl - Type : ACT_GATHER_INFO