This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:linux:linux_kernel:2.6.25.7
Detail
VendorLinuxFirst view 2008-03-25
ProductLinux KernelLast view 2013-11-20
Version2.6.25.7TypeOs
Edition 
Language 
Update 
 
CPE Productcpe:/o:linux:linux_kernel

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
6.62013-11-20CVE-2013-4588LocalMediumRequires ...
6.92013-07-16CVE-2013-1943LocalMediumNone Requ...
4.32013-06-08CVE-2011-4087NetworkMediumNone Requ...
7.82013-06-08CVE-2011-2482NetworkLowNone Requ...
3.32013-06-08CVE-2011-1585LocalMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.52013-06-08CVE-2011-1180NetworkLowNone Requ...
4.92013-06-07CVE-2013-2128LocalLowNone Requ...
42013-03-01CVE-2011-3638LocalHighNone Requ...
4.92013-03-01CVE-2011-2491LocalLowNone Requ...
4.92013-03-01CVE-2011-2479LocalLowNone Requ...
3.62013-03-01CVE-2011-1182LocalLowNone Requ...
1.92013-03-01CVE-2011-1019LocalMediumNone Requ...
5.42012-10-03CVE-2012-3552NetworkHighNone Requ...
42012-05-24CVE-2011-4080LocalHighNone Requ...
5.42012-05-24CVE-2011-3363NetworkHighNone Requ...
5.42012-05-24CVE-2011-3359NetworkHighNone Requ...
4.92012-05-24CVE-2011-2521LocalLowNone Requ...
4.92012-05-24CVE-2011-2518LocalLowNone Requ...
7.22012-05-24CVE-2011-2517LocalLowNone Requ...
4.92012-05-17CVE-2012-0879LocalLowNone Requ...
4.92012-05-17CVE-2011-4621LocalLowNone Requ...
4.92012-05-17CVE-2011-4611LocalLowNone Requ...
7.12012-05-17CVE-2011-4326NetworkMediumNone Requ...
4.92012-05-17CVE-2011-3637LocalLowNone Requ...

CWE : Common Weakness Enumeration

%idName
19% (53)CWE-399Resource Management Errors
16% (44)CWE-189Numeric Errors
15% (42)CWE-20Improper Input Validation
15% (40)CWE-200Information Exposure
14% (39)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
Hide | Show 5 More...
%idName
10% (28)CWE-264Permissions, Privileges, and Access Controls
4% (12)CWE-362Race Condition
1% (4)CWE-16Configuration
0% (2)CWE-310Cryptographic Issues
0% (2)CWE-287Improper Authentication

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-1Accessing Functionality Not Properly Constrained by ACLs
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
CAPEC-14Client-side Injection-induced Buffer Overflow
Hide | Show 18 More...
idName
CAPEC-17Accessing, Modifying or Executing Executable Files
CAPEC-24Filter Failure through Buffer Overflow
CAPEC-42MIME Conversion
CAPEC-44Overflow Binary Resource File
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-59Session Credential Falsification through Prediction
CAPEC-60Reusing Session IDs (aka Session Replay)
CAPEC-61Session Fixation
CAPEC-62Cross Site Request Forgery (aka Session Riding)
CAPEC-100Overflow Buffers
CAPEC-112Brute Force
CAPEC-122Exploitation of Authorization
CAPEC-180Exploiting Incorrectly Configured Access Control Security Levels
CAPEC-232Exploitation of Privilege/Trust
CAPEC-234Hijacking a privileged process
CAPEC-281Analytic Attacks

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:10053fs/direct-io.c in the dio subsystem in the Linux kernel before 2.6.23 does no...
oval:org.mitre.oval:def:9555arch/s390/kernel/ptrace.c in Linux kernel 2.6.9, and other versions before 2....
oval:org.mitre.oval:def:9383The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users to caus...
oval:org.mitre.oval:def:6633Linux Kernel TTY Operations NULL Pointer Dereference Denial of Service Vulner...
oval:org.mitre.oval:def:11632The Linux kernel before 2.6.25.10 does not properly perform tty operations, w...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:22645ELSA-2008:0612: kernel security and bug fix update (Important)
oval:org.mitre.oval:def:11182The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth....
oval:org.mitre.oval:def:22656ELSA-2008:0885: kernel security and bug fix update (Important)
oval:org.mitre.oval:def:11506Integer overflow in the dccp_setsockopt_change function in net/dccp/proto.c i...
oval:org.mitre.oval:def:9233Race condition in the do_setlk function in fs/nfs/file.c in the Linux kernel ...
oval:org.mitre.oval:def:7728VMware kernel race condition in the do_setlk function vulnerability
oval:org.mitre.oval:def:11142The do_splice_from function in fs/splice.c in the Linux kernel before 2.6.27 ...
oval:org.mitre.oval:def:9822sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a deni...
oval:org.mitre.oval:def:22672ELSA-2008:1017: kernel security and bug fix update (Important)
oval:org.mitre.oval:def:11061Buffer overflow in the hfsplus_find_cat function in fs/hfsplus/catalog.c in t...
oval:org.mitre.oval:def:11635The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kerne...
oval:org.mitre.oval:def:10470Stack-based buffer overflow in the hfs_cat_find_brec function in fs/hfs/catal...
oval:org.mitre.oval:def:9558The __scm_destroy function in net/core/scm.c in the Linux kernel 2.6.27.4, 2....
oval:org.mitre.oval:def:11694Service Console update for COS kernel
oval:org.mitre.oval:def:11288net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier a...
oval:org.mitre.oval:def:10584The inotify functionality in Linux kernel 2.6 before 2.6.28-rc5 might allow l...
oval:org.mitre.oval:def:8606VMware kernel libata vulnerability
oval:org.mitre.oval:def:10948libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for ...
oval:org.mitre.oval:def:11344Buffer underflow in the ibwdt_ioctl function in drivers/watchdog/ib700wdt.c i...
oval:org.mitre.oval:def:7947VMware kernel clone system call vulnerability

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
78302Linux Kernel m_stop() Implementation Local DoS
78301Linux Kernel NSF O_Direct Implementation Local DoS
77684Linux Kernel OMAP4 Bridge Networking Interface Network Packet Parsing Remote DoS
77295Linux Kernel UFO IPv6 UDP Datagram Parsing Remote DoS
77293Linux Kernel b43 Driver Wireless Interface Frame Parsing Remote DoS
Hide | Show 20 More...
idDescription
76805Linux Kernel net/core/net_namespace.c Network Namespace Cleanup Weakness Remo...
76666Linux Kernel ext4 Extent Splitting BUG_ON() Local DoS
76177Linux Kernel Performance Events NMI Watchdog Local DoS
75580Linux Kernel CIFS Share Mounting DIFS Referral BUG_ON() Remote DoS
75240Linux Kernel Stream Control Transmission Protocol (SCTP) Packet Handling Remo...
74881Linux Kernel si4713-i2c si4713_write_econtrol_string Function Radio Driver Lo...
74823Linux Kernel fs/befs/linuxvfs.c befs_follow_link Function Be Filesystem Symli...
74679Linux Kernel Bluetooth net/bluetooth/l2cap_core.c l2cap_config_req Function O...
74661Linux Kernel mount.cifs Password Protected Mounted CIFS Share Hijacking Weakness
74660Linux Kernel NFS Server File Locking Local DoS
74658Linux Kernel trigger_scan / sched_scan SSID Length Handling Bypass
74657Linux Kernel Packet Scheduler API Implementation tc_fill_qdisc() Function NUL...
74654Linux Kernel EFI GUID Partition Table (GPT) Implementation Crafted Partition ...
74653Linux Kernel net/ipv4/inet_diag.c inet_diag_bc_audit() Function Local DoS
74645Linux Kernel Common Internet File System (CIFS) Implementation cifs_close() F...
74643Linux Kernel dev_load() Function CAP_NET_ADMIN Capability Arbitrary Module Lo...
74639Linux Kernel IrDA Module Peer name / attribute Handling Local Memory Corruption
74635Linux Kernel AARESOLVE_OFFSET Memory Overwrite Local Privilege Escalation
74138Linux Kernel GRO include/linux/netdevice.h skb_gro_header_slow() Function Rem...
74123Linux Kernel ext4 Subsystem Extent Format Sparse File Off-by-one Local DoS

Milw0rm Exploits

idDescription
2009-08-26Linux Kernel <= 2.6.30 atalk_getname() 8-bytes Stack Disclosure Exploit
2009-08-25Linux Kernel <= 2.6.31-rc7 AF_LLC getsockname 5-Byte Stack Disclosure
2008-12-29Linux Kernel < 2.6.26.4 SCTP Kernel Memory Disclosure Exploit

ExploitDB Exploits

idDescription
17787Linux Kernel < 2.6.36.2 Econet Privilege Escalation Exploit
16973Linux <= 2.6.37-rc1 serial_core TIOCGICOUNT Leak Exploit
16952Linux Kernel < 2.6.37-rc2 TCP_MAXSEG Kernel Panic DoS
16263Linux Kernel <= 2.6.37 Local Kernel Denial of Service
15774Linux Kernel < 2.6.37-rc2 ACPI custom_method Privilege Escalation
Hide | Show 10 More...
idDescription
15704Linux Kernel <= 2.6.37 Local Privilege Escalation
15344Linux Kernel VIDIOCSMICROCODE IOCTL Local Memory Overwrite Vulnerability
15285Linux RDS Protocol Local Privilege Escalation
15150Linux Kernel < 2.6.36-rc6 pktcdvd Kernel Memory Disclosure
14814Linux Kernel < 2.6.36-rc1 CAN BCM Privilege Escalation Exploit
14594Linux Kernel <= 2.6.33.3 SCTP INIT Remote DoS
9543Linux Kernel < 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit
8556Linux Kernel 2.6.x SCTP FWD Memory Corruption Remote Exploit
7618Linux Kernel < 2.6.26.4 - SCTP Kernel Memory Disclosure Exploit
7405Linux Kernel <= 2.6.27.8 - ATMSVC Local Denial of Service Exploit

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-18Name : Debian Security Advisory DSA 2389-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2389_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2443-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2443_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2469-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2469_1.nasl
2012-12-26Name : RedHat Update for kernel RHSA-2012:1580-01
File : nvt/gb_RHSA-2012_1580-01_kernel.nasl
2012-12-26Name : CentOS Update for kernel CESA-2012:1580 centos6
File : nvt/gb_CESA-2012_1580_kernel_centos6.nasl
Hide | Show 20 More...
idDescription
2012-12-06Name : RedHat Update for kernel RHSA-2012:1540-01
File : nvt/gb_RHSA-2012_1540-01_kernel.nasl
2012-12-06Name : CentOS Update for kernel CESA-2012:1540 centos5
File : nvt/gb_CESA-2012_1540_kernel_centos5.nasl
2012-11-15Name : RedHat Update for kernel RHSA-2012:1445-01
File : nvt/gb_RHSA-2012_1445-01_kernel.nasl
2012-11-15Name : CentOS Update for kernel CESA-2012:1445 centos5
File : nvt/gb_CESA-2012_1445_kernel_centos5.nasl
2012-09-27Name : RedHat Update for kernel RHSA-2012:1304-01
File : nvt/gb_RHSA-2012_1304-01_kernel.nasl
2012-09-27Name : CentOS Update for kernel CESA-2012:1304 centos6
File : nvt/gb_CESA-2012_1304_kernel_centos6.nasl
2012-08-31Name : VMSA-2012-0013 VMware vSphere and vCOps updates to third party libraries.
File : nvt/gb_VMSA-2012-0013.nasl
2012-08-02Name : SuSE Update for kernel openSUSE-SU-2012:0206-1 (kernel)
File : nvt/gb_suse_2012_0206_1.nasl
2012-08-02Name : SuSE Update for kernel openSUSE-SU-2012:0236-1 (kernel)
File : nvt/gb_suse_2012_0236_1.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:1212 centos5 x86_64
File : nvt/gb_CESA-2011_1212_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0004 centos5 x86_64
File : nvt/gb_CESA-2011_0004_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0162 centos4 x86_64
File : nvt/gb_CESA-2011_0162_kernel_centos4_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0163 centos5 x86_64
File : nvt/gb_CESA-2011_0163_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2012:0862 centos6
File : nvt/gb_CESA-2012_0862_kernel_centos6.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0303 centos5 x86_64
File : nvt/gb_CESA-2011_0303_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2012:1061 centos5
File : nvt/gb_CESA-2012_1061_kernel_centos5.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:1386 centos5 x86_64
File : nvt/gb_CESA-2011_1386_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0429 centos5 x86_64
File : nvt/gb_CESA-2011_0429_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:1479 centos5 x86_64
File : nvt/gb_CESA-2011_1479_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0833 centos5 x86_64
File : nvt/gb_CESA-2011_0833_kernel_centos5_x86_64.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2012-A-0153Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0033884
2012-A-0148Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0033794
2012-A-0056Multiple Vulnerabilities in VMWare ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0031979
2012-A-0020Multiple Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity : Category I - VMSKEY : V0031252
2011-A-0147Multiple Vulnerabilities in VMware ESX and ESXi
Severity : Category I - VMSKEY : V0030545
Hide | Show 7 More...
idDescription
2011-A-0075Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0028311
2011-A-0066Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0027158
2010-B-0085Linux Kernel Privilege Escalation Vulnerability
Severity : Category I - VMSKEY : V0025410
2010-A-0015Multiple Vulnerabilities in Red Hat Linux Kernel
Severity : Category I - VMSKEY : V0022631
2010-A-0001Multiple Vulnerabilities in Linux Kernel
Severity : Category I - VMSKEY : V0022180
2009-A-0105Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0021867
2009-T-0024Multiple Vulnerabilities in Linux Kernel
Severity : Category I - VMSKEY : V0018983

Snort® IPS/IDS

DateDescription
2014-01-10Linux kernel IA32 out-of-bounds system call attempt
RuleID : 24371 - Type : OS-LINUX - Revision : 4
2014-01-10Linux kernel IA32 out-of-bounds system call attempt
RuleID : 24370 - Type : OS-LINUX - Revision : 5
2014-01-10Linux Kernel nfsd v4 CAP_MKNOD security bypass attempt
RuleID : 17749 - Type : PROTOCOL-RPC - Revision : 3
2014-01-10Linux kernel sctp_process_unk_param SCTPChunkInit buffer overflow attempt
RuleID : 16724 - Type : OS-LINUX - Revision : 3
2014-01-10Linux Kernel nfsd v3 tcp CAP_MKNOD security bypass attempt
RuleID : 16702 - Type : PROTOCOL-RPC - Revision : 3
Hide | Show 7 More...
DateDescription
2014-01-10Linux Kernel nfsd v3 udp CAP_MKNOD security bypass attempt
RuleID : 16701 - Type : PROTOCOL-RPC - Revision : 4
2014-01-10Linux Kernel nfsd v2 tcp CAP_MKNOD security bypass attempt
RuleID : 16700 - Type : PROTOCOL-RPC - Revision : 3
2014-01-10Linux Kernel nfsd v2 udp CAP_MKNOD security bypass attempt
RuleID : 16699 - Type : PROTOCOL-RPC - Revision : 4
2014-01-10Linux Kernel NFSD Subsystem overflow attempt
RuleID : 16352 - Type : OS-LINUX - Revision : 3
2014-01-10Linux Kernel DCCP Protocol Handler dccp_setsockopt_change integer overflow at...
RuleID : 15907 - Type : OS-LINUX - Revision : 4
2014-01-10Linux Kernel DCCP Protocol Handler dccp_setsockopt_change integer overflow at...
RuleID : 15906 - Type : OS-LINUX - Revision : 4
2014-01-10Linux SCTP malformed forward-tsn chunk arbitrary code execution attempt
RuleID : 15490 - Type : OS-LINUX - Revision : 5

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-01-05Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2064-1.nasl - Type : ACT_GATHER_INFO
2014-01-05Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-2065-1.nasl - Type : ACT_GATHER_INFO
2013-12-06Name : The remote VMware ESX host is missing one or more security-related patches.
File : vmware_VMSA-2013-0015.nasl - Type : ACT_GATHER_INFO
2013-09-07Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-1939-1.nasl - Type : ACT_GATHER_INFO
2013-09-07Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-1940-1.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2011-26.nasl - Type : ACT_GATHER_INFO
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2012-100.nasl - Type : ACT_GATHER_INFO
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2012-133.nasl - Type : ACT_GATHER_INFO
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2011-16.nasl - Type : ACT_GATHER_INFO
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2011-22.nasl - Type : ACT_GATHER_INFO
2013-08-29Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20130827_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2013-08-29Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2013-1173.nasl - Type : ACT_GATHER_INFO
2013-08-28Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-1173.nasl - Type : ACT_GATHER_INFO
2013-08-28Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2013-1173.nasl - Type : ACT_GATHER_INFO
2013-08-23Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2013-1166-1.nasl - Type : ACT_GATHER_INFO
2013-08-23Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2013-1166.nasl - Type : ACT_GATHER_INFO
2013-08-22Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20130820_kernel_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2013-08-22Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2013-1166.nasl - Type : ACT_GATHER_INFO
2013-08-21Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-1166.nasl - Type : ACT_GATHER_INFO
2013-07-18Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20130716_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2013-07-18Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2013-1051.nasl - Type : ACT_GATHER_INFO
2013-07-17Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-1051.nasl - Type : ACT_GATHER_INFO
2013-07-17Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2013-1051.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-1550.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0150.nasl - Type : ACT_GATHER_INFO