This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/o:linux:linux_kernel:2.6.27 |
| Detail | |||
|---|---|---|---|
| Vendor | Linux | First view | 2008-11-05 |
| Product | Linux Kernel | Last view | 2013-03-01 |
| Version | 2.6.27 | Type | Os |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/o:linux:linux_kernel | ||
Activity : Yearly
Related : CVE
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4 | 2013-03-01 | CVE-2011-3638 | Local | High | None Requ... | |
| 4.9 | 2013-03-01 | CVE-2011-2491 | Local | Low | None Requ... | |
| 4.9 | 2013-03-01 | CVE-2011-2479 | Local | Low | None Requ... | |
| 3.6 | 2013-03-01 | CVE-2011-1182 | Local | Low | None Requ... | |
| 1.9 | 2013-03-01 | CVE-2011-1019 | Local | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 5.4 | 2012-10-03 | CVE-2012-3552 | Network | High | None Requ... | |
| 7.2 | 2012-06-21 | CVE-2012-0028 | Local | Low | None Requ... | |
| 4 | 2012-05-24 | CVE-2011-4080 | Local | High | None Requ... | |
| 5.4 | 2012-05-24 | CVE-2011-3363 | Network | High | None Requ... | |
| 5.4 | 2012-05-24 | CVE-2011-3359 | Network | High | None Requ... | |
| 4.9 | 2012-05-24 | CVE-2011-2521 | Local | Low | None Requ... | |
| 4.9 | 2012-05-24 | CVE-2011-2518 | Local | Low | None Requ... | |
| 7.2 | 2012-05-24 | CVE-2011-2517 | Local | Low | None Requ... | |
| 4.9 | 2012-05-17 | CVE-2012-0879 | Local | Low | None Requ... | |
| 4.9 | 2012-05-17 | CVE-2011-4621 | Local | Low | None Requ... | |
| 4.9 | 2012-05-17 | CVE-2011-4611 | Local | Low | None Requ... | |
| 7.1 | 2012-05-17 | CVE-2011-4326 | Network | Medium | None Requ... | |
| 4.9 | 2012-05-17 | CVE-2011-3637 | Local | Low | None Requ... | |
| 7.2 | 2012-02-01 | CVE-2011-2525 | Local | Low | None Requ... | |
| 5 | 2012-02-01 | CVE-2011-1573 | Network | Low | None Requ... | |
| 4.9 | 2012-01-27 | CVE-2011-4325 | Local | Low | None Requ... | |
| 5.7 | 2011-10-23 | CVE-2011-1478 | Adjacent ... | Medium | None Requ... | |
| 7.8 | 2011-10-10 | CVE-2011-2189 | Network | Low | None Requ... | |
| 7.8 | 2011-10-04 | CVE-2011-1076 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 20% (51) | CWE-399 | Resource Management Errors |
| 16% (40) | CWE-20 | Improper Input Validation |
| 15% (38) | CWE-189 | Numeric Errors |
| 15% (37) | CWE-200 | Information Exposure |
| 13% (34) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| % | id | Name |
|---|---|---|
| 11% (27) | CWE-264 | Permissions, Privileges, and Access Controls |
| 4% (11) | CWE-362 | Race Condition |
| 1% (4) | CWE-16 | Configuration |
| 0% (2) | CWE-310 | Cryptographic Issues |
| 0% (1) | CWE-287 | Improper Authentication |
CAPEC : Common Attack Pattern Enumeration & Classificatio
| id | Name |
|---|---|
| CAPEC-1 | Accessing Functionality Not Properly Constrained by ACLs |
| CAPEC-8 | Buffer Overflow in an API Call |
| CAPEC-9 | Buffer Overflow in Local Command-Line Utilities |
| CAPEC-10 | Buffer Overflow via Environment Variables |
| CAPEC-14 | Client-side Injection-induced Buffer Overflow |
| id | Name |
|---|---|
| CAPEC-17 | Accessing, Modifying or Executing Executable Files |
| CAPEC-24 | Filter Failure through Buffer Overflow |
| CAPEC-42 | MIME Conversion |
| CAPEC-44 | Overflow Binary Resource File |
| CAPEC-45 | Buffer Overflow via Symbolic Links |
| CAPEC-46 | Overflow Variables and Tags |
| CAPEC-47 | Buffer Overflow via Parameter Expansion |
| CAPEC-59 | Session Credential Falsification through Prediction |
| CAPEC-60 | Reusing Session IDs (aka Session Replay) |
| CAPEC-61 | Session Fixation |
| CAPEC-62 | Cross Site Request Forgery (aka Session Riding) |
| CAPEC-100 | Overflow Buffers |
| CAPEC-112 | Brute Force |
| CAPEC-122 | Exploitation of Authorization |
| CAPEC-180 | Exploiting Incorrectly Configured Access Control Security Levels |
| CAPEC-232 | Exploitation of Privilege/Trust |
| CAPEC-234 | Hijacking a privileged process |
| CAPEC-281 | Analytic Attacks |
Oval Markup Language : Definitions
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:11061 | Buffer overflow in the hfsplus_find_cat function in fs/hfsplus/catalog.c in t... |
| oval:org.mitre.oval:def:11635 | The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kerne... |
| oval:org.mitre.oval:def:10470 | Stack-based buffer overflow in the hfs_cat_find_brec function in fs/hfs/catal... |
| oval:org.mitre.oval:def:9558 | The __scm_destroy function in net/core/scm.c in the Linux kernel 2.6.27.4, 2.... |
| oval:org.mitre.oval:def:11694 | Service Console update for COS kernel |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:11288 | net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier a... |
| oval:org.mitre.oval:def:10584 | The inotify functionality in Linux kernel 2.6 before 2.6.28-rc5 might allow l... |
| oval:org.mitre.oval:def:8606 | VMware kernel libata vulnerability |
| oval:org.mitre.oval:def:10948 | libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for ... |
| oval:org.mitre.oval:def:11344 | Buffer underflow in the ibwdt_ioctl function in drivers/watchdog/ib700wdt.c i... |
| oval:org.mitre.oval:def:7947 | VMware kernel clone system call vulnerability |
| oval:org.mitre.oval:def:11187 | The clone system call in the Linux kernel 2.6.28 and earlier allows local use... |
| oval:org.mitre.oval:def:11386 | Memory leak in the keyctl_join_session_keyring function (security/keys/keyctl... |
| oval:org.mitre.oval:def:10872 | Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control Transmission... |
| oval:org.mitre.oval:def:8944 | fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel before 2.6.... |
| oval:org.mitre.oval:def:8169 | VMware kernel eCryptfs vulnerability |
| oval:org.mitre.oval:def:7734 | VMware kernel drivers/firmware/dell_rbu.c vulnerability |
| oval:org.mitre.oval:def:10163 | drivers/firmware/dell_rbu.c in the Linux kernel before 2.6.27.13, and 2.6.28.... |
| oval:org.mitre.oval:def:8685 | VMware kernel skfp_ioctl function vulnerability |
| oval:org.mitre.oval:def:11529 | The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux kernel befo... |
| oval:org.mitre.oval:def:8618 | VMware kernel sock_getsockopt function vulnerability |
| oval:org.mitre.oval:def:11653 | The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.... |
| oval:org.mitre.oval:def:7765 | VMware kernel ext4_group_add function vulnerability |
| oval:org.mitre.oval:def:10942 | The ext4_group_add function in fs/ext4/resize.c in the Linux kernel 2.6.27 be... |
| oval:org.mitre.oval:def:8039 | VMware kernel make_indexed_dir function vulnerability |
Open Source Vulnerability Database (OSVDB)
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 78302 | Linux Kernel m_stop() Implementation Local DoS |
| 78301 | Linux Kernel NSF O_Direct Implementation Local DoS |
| 77295 | Linux Kernel UFO IPv6 UDP Datagram Parsing Remote DoS |
| 77293 | Linux Kernel b43 Driver Wireless Interface Frame Parsing Remote DoS |
| 76805 | Linux Kernel net/core/net_namespace.c Network Namespace Cleanup Weakness Remo... |
| id | Description |
|---|---|
| 76666 | Linux Kernel ext4 Extent Splitting BUG_ON() Local DoS |
| 76177 | Linux Kernel Performance Events NMI Watchdog Local DoS |
| 75580 | Linux Kernel CIFS Share Mounting DIFS Referral BUG_ON() Remote DoS |
| 74881 | Linux Kernel si4713-i2c si4713_write_econtrol_string Function Radio Driver Lo... |
| 74823 | Linux Kernel fs/befs/linuxvfs.c befs_follow_link Function Be Filesystem Symli... |
| 74679 | Linux Kernel Bluetooth net/bluetooth/l2cap_core.c l2cap_config_req Function O... |
| 74660 | Linux Kernel NFS Server File Locking Local DoS |
| 74658 | Linux Kernel trigger_scan / sched_scan SSID Length Handling Bypass |
| 74657 | Linux Kernel Packet Scheduler API Implementation tc_fill_qdisc() Function NUL... |
| 74654 | Linux Kernel EFI GUID Partition Table (GPT) Implementation Crafted Partition ... |
| 74653 | Linux Kernel net/ipv4/inet_diag.c inet_diag_bc_audit() Function Local DoS |
| 74645 | Linux Kernel Common Internet File System (CIFS) Implementation cifs_close() F... |
| 74643 | Linux Kernel dev_load() Function CAP_NET_ADMIN Capability Arbitrary Module Lo... |
| 74635 | Linux Kernel AARESOLVE_OFFSET Memory Overwrite Local Privilege Escalation |
| 74138 | Linux Kernel GRO include/linux/netdevice.h skb_gro_header_slow() Function Rem... |
| 74123 | Linux Kernel ext4 Subsystem Extent Format Sparse File Off-by-one Local DoS |
| 73882 | Linux Kernel DCCP net/dccp/input.c dccp_rcv_state_process Function CLOSED End... |
| 73872 | Linux Kernel fs/proc/array.c do_task_stat Function Local ASLR Protection Mech... |
| 73802 | Linux Kernel fs/gfs2/file.c GFS2 gfs2_fallocate() Function Local DoS |
| 73460 | Linux Kernel Bluetooth net/bluetooth/rfcomm/sock.c rfcomm_sock_getsockopt_old... |
Milw0rm Exploits
| id | Description |
|---|---|
| 2009-08-26 | Linux Kernel <= 2.6.30 atalk_getname() 8-bytes Stack Disclosure Exploit |
| 2009-08-25 | Linux Kernel <= 2.6.31-rc7 AF_LLC getsockname 5-Byte Stack Disclosure |
ExploitDB Exploits
| id | Description |
|---|---|
| 17787 | Linux Kernel < 2.6.36.2 Econet Privilege Escalation Exploit |
| 16973 | Linux <= 2.6.37-rc1 serial_core TIOCGICOUNT Leak Exploit |
| 16952 | Linux Kernel < 2.6.37-rc2 TCP_MAXSEG Kernel Panic DoS |
| 16263 | Linux Kernel <= 2.6.37 Local Kernel Denial of Service |
| 15774 | Linux Kernel < 2.6.37-rc2 ACPI custom_method Privilege Escalation |
| id | Description |
|---|---|
| 15704 | Linux Kernel <= 2.6.37 Local Privilege Escalation |
| 15344 | Linux Kernel VIDIOCSMICROCODE IOCTL Local Memory Overwrite Vulnerability |
| 15285 | Linux RDS Protocol Local Privilege Escalation |
| 15150 | Linux Kernel < 2.6.36-rc6 pktcdvd Kernel Memory Disclosure |
| 14594 | Linux Kernel <= 2.6.33.3 SCTP INIT Remote DoS |
| 9543 | Linux Kernel < 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit |
| 8556 | Linux Kernel 2.6.x SCTP FWD Memory Corruption Remote Exploit |
| 7405 | Linux Kernel <= 2.6.27.8 ATMSVC Local Denial of Service Exploit |
