This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:linux:linux_kernel:2.6.25.7
Detail
VendorLinuxFirst view 2008-03-25
ProductLinux KernelLast view 2014-06-23
Version2.6.25.7TypeOs
Edition 
Language 
Update 
 
CPE Productcpe:/o:linux:linux_kernel

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.9 2014-06-23 CVE-2014-0203 Local Low None Requ...
6.6 2013-11-20 CVE-2013-4588 Local Medium Requires ...
6.9 2013-07-16 CVE-2013-1943 Local Medium None Requ...
4.3 2013-06-08 CVE-2011-4087 Network Medium None Requ...
7.8 2013-06-08 CVE-2011-2482 Network Low None Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
3.3 2013-06-08 CVE-2011-1585 Local Medium None Requ...
7.5 2013-06-08 CVE-2011-1180 Network Low None Requ...
4.9 2013-06-07 CVE-2013-2128 Local Low None Requ...
4 2013-03-01 CVE-2011-3638 Local High None Requ...
4.9 2013-03-01 CVE-2011-2491 Local Low None Requ...
4.9 2013-03-01 CVE-2011-2479 Local Low None Requ...
3.6 2013-03-01 CVE-2011-1182 Local Low None Requ...
1.9 2013-03-01 CVE-2011-1019 Local Medium None Requ...
5.4 2012-10-03 CVE-2012-3552 Network High None Requ...
4 2012-05-24 CVE-2011-4080 Local High None Requ...
5.4 2012-05-24 CVE-2011-3363 Network High None Requ...
5.4 2012-05-24 CVE-2011-3359 Network High None Requ...
4.9 2012-05-24 CVE-2011-2521 Local Low None Requ...
4.9 2012-05-24 CVE-2011-2518 Local Low None Requ...
7.2 2012-05-24 CVE-2011-2517 Local Low None Requ...
4.9 2012-05-17 CVE-2012-0879 Local Low None Requ...
4.9 2012-05-17 CVE-2011-4621 Local Low None Requ...
4.9 2012-05-17 CVE-2011-4611 Local Low None Requ...
7.1 2012-05-17 CVE-2011-4326 Network Medium None Requ...

CWE : Common Weakness Enumeration

%idName
19% (53)CWE-399Resource Management Errors
16% (44)CWE-189Numeric Errors
16% (43)CWE-20Improper Input Validation
14% (40)CWE-200Information Exposure
14% (39)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
Hide | Show 5 More...
%idName
10% (28)CWE-264Permissions, Privileges, and Access Controls
4% (12)CWE-362Race Condition
1% (4)CWE-16Configuration
0% (2)CWE-310Cryptographic Issues
0% (2)CWE-287Improper Authentication

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-1Accessing Functionality Not Properly Constrained by ACLs
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
CAPEC-14Client-side Injection-induced Buffer Overflow
Hide | Show 18 More...
idName
CAPEC-17Accessing, Modifying or Executing Executable Files
CAPEC-24Filter Failure through Buffer Overflow
CAPEC-42MIME Conversion
CAPEC-44Overflow Binary Resource File
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-59Session Credential Falsification through Prediction
CAPEC-60Reusing Session IDs (aka Session Replay)
CAPEC-61Session Fixation
CAPEC-62Cross Site Request Forgery (aka Session Riding)
CAPEC-100Overflow Buffers
CAPEC-112Brute Force
CAPEC-122Exploitation of Authorization
CAPEC-180Exploiting Incorrectly Configured Access Control Security Levels
CAPEC-232Exploitation of Privilege/Trust
CAPEC-234Hijacking a privileged process
CAPEC-281Analytic Attacks

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:10053fs/direct-io.c in the dio subsystem in the Linux kernel before 2.6.23 does no...
oval:org.mitre.oval:def:9555arch/s390/kernel/ptrace.c in Linux kernel 2.6.9, and other versions before 2....
oval:org.mitre.oval:def:9383The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users to caus...
oval:org.mitre.oval:def:6633Linux Kernel TTY Operations NULL Pointer Dereference Denial of Service Vulner...
oval:org.mitre.oval:def:11632The Linux kernel before 2.6.25.10 does not properly perform tty operations, w...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:22645ELSA-2008:0612: kernel security and bug fix update (Important)
oval:org.mitre.oval:def:17496USN-625-1 -- linux, linux-source-2.6.15/20/22 vulnerabilities
oval:org.mitre.oval:def:11182The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth....
oval:org.mitre.oval:def:22656ELSA-2008:0885: kernel security and bug fix update (Important)
oval:org.mitre.oval:def:11506Integer overflow in the dccp_setsockopt_change function in net/dccp/proto.c i...
oval:org.mitre.oval:def:8234DSA-1636 linux-2.6.24 -- denial of service/information leak
oval:org.mitre.oval:def:18712DSA-1636-1 linux-2.6.24 - several vulnerabilities
oval:org.mitre.oval:def:17322USN-659-1 -- linux, linux-source-2.6.15/22 vulnerabilities
oval:org.mitre.oval:def:9233Race condition in the do_setlk function in fs/nfs/file.c in the Linux kernel ...
oval:org.mitre.oval:def:7728VMware kernel race condition in the do_setlk function vulnerability
oval:org.mitre.oval:def:8075DSA-1655 linux-2.6.24 -- denial of service/information leak/privilege escalation
oval:org.mitre.oval:def:20316DSA-1655-1 linux-2.6.24 - several vulnerabilities
oval:org.mitre.oval:def:11142The do_splice_from function in fs/splice.c in the Linux kernel before 2.6.27 ...
oval:org.mitre.oval:def:9822sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a deni...
oval:org.mitre.oval:def:22672ELSA-2008:1017: kernel security and bug fix update (Important)
oval:org.mitre.oval:def:11061Buffer overflow in the hfsplus_find_cat function in fs/hfsplus/catalog.c in t...
oval:org.mitre.oval:def:11635The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kerne...
oval:org.mitre.oval:def:10470Stack-based buffer overflow in the hfs_cat_find_brec function in fs/hfs/catal...
oval:org.mitre.oval:def:9558The __scm_destroy function in net/core/scm.c in the Linux kernel 2.6.27.4, 2....
oval:org.mitre.oval:def:11694Service Console update for COS kernel

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
78302Linux Kernel m_stop() Implementation Local DoS
78301Linux Kernel NSF O_Direct Implementation Local DoS
77684Linux Kernel OMAP4 Bridge Networking Interface Network Packet Parsing Remote DoS
77295Linux Kernel UFO IPv6 UDP Datagram Parsing Remote DoS
77293Linux Kernel b43 Driver Wireless Interface Frame Parsing Remote DoS
Hide | Show 20 More...
idDescription
76805Linux Kernel net/core/net_namespace.c Network Namespace Cleanup Weakness Remo...
76666Linux Kernel ext4 Extent Splitting BUG_ON() Local DoS
76177Linux Kernel Performance Events NMI Watchdog Local DoS
75580Linux Kernel CIFS Share Mounting DIFS Referral BUG_ON() Remote DoS
75240Linux Kernel Stream Control Transmission Protocol (SCTP) Packet Handling Remo...
74881Linux Kernel si4713-i2c si4713_write_econtrol_string Function Radio Driver Lo...
74823Linux Kernel fs/befs/linuxvfs.c befs_follow_link Function Be Filesystem Symli...
74679Linux Kernel Bluetooth net/bluetooth/l2cap_core.c l2cap_config_req Function O...
74661Linux Kernel mount.cifs Password Protected Mounted CIFS Share Hijacking Weakness
74660Linux Kernel NFS Server File Locking Local DoS
74658Linux Kernel trigger_scan / sched_scan SSID Length Handling Bypass
74657Linux Kernel Packet Scheduler API Implementation tc_fill_qdisc() Function NUL...
74654Linux Kernel EFI GUID Partition Table (GPT) Implementation Crafted Partition ...
74653Linux Kernel net/ipv4/inet_diag.c inet_diag_bc_audit() Function Local DoS
74645Linux Kernel Common Internet File System (CIFS) Implementation cifs_close() F...
74643Linux Kernel dev_load() Function CAP_NET_ADMIN Capability Arbitrary Module Lo...
74639Linux Kernel IrDA Module Peer name / attribute Handling Local Memory Corruption
74635Linux Kernel AARESOLVE_OFFSET Memory Overwrite Local Privilege Escalation
74138Linux Kernel GRO include/linux/netdevice.h skb_gro_header_slow() Function Rem...
74123Linux Kernel ext4 Subsystem Extent Format Sparse File Off-by-one Local DoS

Milw0rm Exploits

idDescription
2009-08-26Linux Kernel <= 2.6.30 atalk_getname() 8-bytes Stack Disclosure Exploit
2009-08-25Linux Kernel <= 2.6.31-rc7 AF_LLC getsockname 5-Byte Stack Disclosure
2008-12-29Linux Kernel < 2.6.26.4 SCTP Kernel Memory Disclosure Exploit

ExploitDB Exploits

idDescription
17787Linux Kernel < 2.6.36.2 Econet Privilege Escalation Exploit
16973Linux <= 2.6.37-rc1 serial_core TIOCGICOUNT Leak Exploit
16952Linux Kernel < 2.6.37-rc2 TCP_MAXSEG Kernel Panic DoS
16263Linux Kernel <= 2.6.37 Local Kernel Denial of Service
15774Linux Kernel < 2.6.37-rc2 ACPI custom_method Privilege Escalation
Hide | Show 10 More...
idDescription
15704Linux Kernel <= 2.6.37 - Local Privilege Escalation
15344Linux Kernel VIDIOCSMICROCODE IOCTL Local Memory Overwrite Vulnerability
15285Linux RDS Protocol Local Privilege Escalation
15150Linux Kernel < 2.6.36-rc6 pktcdvd Kernel Memory Disclosure
14814Linux Kernel < 2.6.36-rc1 CAN BCM Privilege Escalation Exploit
14594Linux Kernel <= 2.6.33.3 SCTP INIT Remote DoS
9543Linux Kernel < 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit
8556Linux Kernel 2.6.x SCTP FWD Memory Corruption Remote Exploit
7618Linux Kernel < 2.6.26.4 - SCTP Kernel Memory Disclosure Exploit
7405Linux Kernel <= 2.6.27.8 - ATMSVC Local Denial of Service Exploit

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-18Name : Debian Security Advisory DSA 2389-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2389_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2443-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2443_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2469-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2469_1.nasl
2012-12-26Name : RedHat Update for kernel RHSA-2012:1580-01
File : nvt/gb_RHSA-2012_1580-01_kernel.nasl
2012-12-26Name : CentOS Update for kernel CESA-2012:1580 centos6
File : nvt/gb_CESA-2012_1580_kernel_centos6.nasl
Hide | Show 20 More...
idDescription
2012-12-06Name : RedHat Update for kernel RHSA-2012:1540-01
File : nvt/gb_RHSA-2012_1540-01_kernel.nasl
2012-12-06Name : CentOS Update for kernel CESA-2012:1540 centos5
File : nvt/gb_CESA-2012_1540_kernel_centos5.nasl
2012-11-15Name : RedHat Update for kernel RHSA-2012:1445-01
File : nvt/gb_RHSA-2012_1445-01_kernel.nasl
2012-11-15Name : CentOS Update for kernel CESA-2012:1445 centos5
File : nvt/gb_CESA-2012_1445_kernel_centos5.nasl
2012-09-27Name : RedHat Update for kernel RHSA-2012:1304-01
File : nvt/gb_RHSA-2012_1304-01_kernel.nasl
2012-09-27Name : CentOS Update for kernel CESA-2012:1304 centos6
File : nvt/gb_CESA-2012_1304_kernel_centos6.nasl
2012-08-31Name : VMSA-2012-0013 VMware vSphere and vCOps updates to third party libraries.
File : nvt/gb_VMSA-2012-0013.nasl
2012-08-02Name : SuSE Update for kernel openSUSE-SU-2012:0206-1 (kernel)
File : nvt/gb_suse_2012_0206_1.nasl
2012-08-02Name : SuSE Update for kernel openSUSE-SU-2012:0236-1 (kernel)
File : nvt/gb_suse_2012_0236_1.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:1212 centos5 x86_64
File : nvt/gb_CESA-2011_1212_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0004 centos5 x86_64
File : nvt/gb_CESA-2011_0004_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0162 centos4 x86_64
File : nvt/gb_CESA-2011_0162_kernel_centos4_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0163 centos5 x86_64
File : nvt/gb_CESA-2011_0163_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2012:0862 centos6
File : nvt/gb_CESA-2012_0862_kernel_centos6.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0303 centos5 x86_64
File : nvt/gb_CESA-2011_0303_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2012:1061 centos5
File : nvt/gb_CESA-2012_1061_kernel_centos5.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:1386 centos5 x86_64
File : nvt/gb_CESA-2011_1386_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0429 centos5 x86_64
File : nvt/gb_CESA-2011_0429_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:1479 centos5 x86_64
File : nvt/gb_CESA-2011_1479_kernel_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for kernel CESA-2011:0833 centos5 x86_64
File : nvt/gb_CESA-2011_0833_kernel_centos5_x86_64.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2012-A-0153Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0033884
2012-A-0148Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0033794
2012-A-0056Multiple Vulnerabilities in VMWare ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0031979
2012-A-0020Multiple Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity : Category I - VMSKEY : V0031252
2011-A-0147Multiple Vulnerabilities in VMware ESX and ESXi
Severity : Category I - VMSKEY : V0030545
Hide | Show 7 More...
idDescription
2011-A-0075Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0028311
2011-A-0066Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0027158
2010-B-0085Linux Kernel Privilege Escalation Vulnerability
Severity : Category I - VMSKEY : V0025410
2010-A-0015Multiple Vulnerabilities in Red Hat Linux Kernel
Severity : Category I - VMSKEY : V0022631
2010-A-0001Multiple Vulnerabilities in Linux Kernel
Severity : Category I - VMSKEY : V0022180
2009-A-0105Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0021867
2009-T-0024Multiple Vulnerabilities in Linux Kernel
Severity : Category I - VMSKEY : V0018983

Snort® IPS/IDS

DateDescription
2014-01-10Linux kernel IA32 out-of-bounds system call attempt
RuleID : 24371 - Type : OS-LINUX - Revision : 4
2014-01-10Linux kernel IA32 out-of-bounds system call attempt
RuleID : 24370 - Type : OS-LINUX - Revision : 5
2014-01-10Linux Kernel nfsd v4 CAP_MKNOD security bypass attempt
RuleID : 17749 - Type : PROTOCOL-RPC - Revision : 3
2014-01-10Linux kernel sctp_process_unk_param SCTPChunkInit buffer overflow attempt
RuleID : 16724 - Type : OS-LINUX - Revision : 3
2014-01-10Linux Kernel nfsd v3 tcp CAP_MKNOD security bypass attempt
RuleID : 16702 - Type : PROTOCOL-RPC - Revision : 3
Hide | Show 7 More...
DateDescription
2014-01-10Linux Kernel nfsd v3 udp CAP_MKNOD security bypass attempt
RuleID : 16701 - Type : PROTOCOL-RPC - Revision : 4
2014-01-10Linux Kernel nfsd v2 tcp CAP_MKNOD security bypass attempt
RuleID : 16700 - Type : PROTOCOL-RPC - Revision : 3
2014-01-10Linux Kernel nfsd v2 udp CAP_MKNOD security bypass attempt
RuleID : 16699 - Type : PROTOCOL-RPC - Revision : 4
2014-01-10Linux Kernel NFSD Subsystem overflow attempt
RuleID : 16352 - Type : OS-LINUX - Revision : 3
2014-01-10Linux Kernel DCCP Protocol Handler dccp_setsockopt_change integer overflow at...
RuleID : 15907 - Type : OS-LINUX - Revision : 4
2014-01-10Linux Kernel DCCP Protocol Handler dccp_setsockopt_change integer overflow at...
RuleID : 15906 - Type : OS-LINUX - Revision : 4
2014-01-10Linux SCTP malformed forward-tsn chunk arbitrary code execution attempt
RuleID : 15490 - Type : OS-LINUX - Revision : 5

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-07-22Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2011-1253.nasl - Type : ACT_GATHER_INFO
2014-07-22Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-0010.nasl - Type : ACT_GATHER_INFO
2014-06-23Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2014-0771.nasl - Type : ACT_GATHER_INFO
2014-06-23Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-3043.nasl - Type : ACT_GATHER_INFO
2014-06-20Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-0771.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2014-06-20Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2014-0771.nasl - Type : ACT_GATHER_INFO
2014-06-20Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20140619_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-756.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-100915.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-100921.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-101008.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-101026.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-101215.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-110414.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-110726.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-111026.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_kernel-120104.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-235.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_kernel-110426.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_kernel-110726.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_kernel-111026.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_kernel-120104.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_Kernel-100824.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-342.nasl - Type : ACT_GATHER_INFO
2014-01-05Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2064-1.nasl - Type : ACT_GATHER_INFO