This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/o:linux:linux_kernel:2.6.27.31 |
| Detail | |||
|---|---|---|---|
| Vendor | Linux | First view | 2009-03-06 |
| Product | Linux Kernel | Last view | 2013-03-01 |
| Version | 2.6.27.31 | Type | Os |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/o:linux:linux_kernel | ||
Activity : Yearly
Related : CVE
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4 | 2013-03-01 | CVE-2011-3638 | Local | High | None Requ... | |
| 4.9 | 2013-03-01 | CVE-2011-2491 | Local | Low | None Requ... | |
| 4.9 | 2013-03-01 | CVE-2011-2479 | Local | Low | None Requ... | |
| 3.6 | 2013-03-01 | CVE-2011-1182 | Local | Low | None Requ... | |
| 1.9 | 2013-03-01 | CVE-2011-1019 | Local | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 5.4 | 2012-10-03 | CVE-2012-3552 | Network | High | None Requ... | |
| 7.2 | 2012-06-21 | CVE-2012-0028 | Local | Low | None Requ... | |
| 4 | 2012-05-24 | CVE-2011-4080 | Local | High | None Requ... | |
| 5.4 | 2012-05-24 | CVE-2011-3363 | Network | High | None Requ... | |
| 5.4 | 2012-05-24 | CVE-2011-3359 | Network | High | None Requ... | |
| 4.9 | 2012-05-24 | CVE-2011-2521 | Local | Low | None Requ... | |
| 4.9 | 2012-05-24 | CVE-2011-2518 | Local | Low | None Requ... | |
| 7.2 | 2012-05-24 | CVE-2011-2517 | Local | Low | None Requ... | |
| 4.9 | 2012-05-17 | CVE-2012-0879 | Local | Low | None Requ... | |
| 4.9 | 2012-05-17 | CVE-2011-4621 | Local | Low | None Requ... | |
| 4.9 | 2012-05-17 | CVE-2011-4611 | Local | Low | None Requ... | |
| 7.1 | 2012-05-17 | CVE-2011-4326 | Network | Medium | None Requ... | |
| 4.9 | 2012-05-17 | CVE-2011-3637 | Local | Low | None Requ... | |
| 7.2 | 2012-02-01 | CVE-2011-2525 | Local | Low | None Requ... | |
| 5 | 2012-02-01 | CVE-2011-1573 | Network | Low | None Requ... | |
| 4.9 | 2012-01-27 | CVE-2011-4325 | Local | Low | None Requ... | |
| 5.7 | 2011-10-23 | CVE-2011-1478 | Adjacent ... | Medium | None Requ... | |
| 7.8 | 2011-10-10 | CVE-2011-2189 | Network | Low | None Requ... | |
| 7.8 | 2011-10-04 | CVE-2011-1076 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 20% (24) | CWE-399 | Resource Management Errors |
| 19% (23) | CWE-189 | Numeric Errors |
| 16% (20) | CWE-20 | Improper Input Validation |
| 14% (17) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 11% (14) | CWE-200 | Information Exposure |
| % | id | Name |
|---|---|---|
| 10% (13) | CWE-264 | Permissions, Privileges, and Access Controls |
| 4% (5) | CWE-362 | Race Condition |
| 1% (2) | CWE-310 | Cryptographic Issues |
| 0% (1) | CWE-287 | Improper Authentication |
CAPEC : Common Attack Pattern Enumeration & Classificatio
| id | Name |
|---|---|
| CAPEC-1 | Accessing Functionality Not Properly Constrained by ACLs |
| CAPEC-17 | Accessing, Modifying or Executing Executable Files |
| CAPEC-59 | Session Credential Falsification through Prediction |
| CAPEC-60 | Reusing Session IDs (aka Session Replay) |
| CAPEC-61 | Session Fixation |
| id | Name |
|---|---|
| CAPEC-62 | Cross Site Request Forgery (aka Session Riding) |
| CAPEC-112 | Brute Force |
| CAPEC-122 | Exploitation of Authorization |
| CAPEC-180 | Exploiting Incorrectly Configured Access Control Security Levels |
| CAPEC-232 | Exploitation of Privilege/Trust |
| CAPEC-234 | Hijacking a privileged process |
| CAPEC-281 | Analytic Attacks |
Oval Markup Language : Definitions
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:9600 | The audit_syscall_entry function in the Linux kernel 2.6.28.7 and earlier on ... |
| oval:org.mitre.oval:def:8508 | VMware kernel audit_syscall_entry function vulnerability |
| oval:org.mitre.oval:def:8057 | VMware kernel parse_tag_3_packet function vulnerability |
| oval:org.mitre.oval:def:11255 | Heap-based buffer overflow in the parse_tag_3_packet function in fs/ecryptfs/... |
| oval:org.mitre.oval:def:9882 | The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations ... |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:7144 | Linux Kernel with SELinux 'mmap_min_addr' Low Memory NULL Pointer Dereference... |
| oval:org.mitre.oval:def:10396 | The md driver (drivers/md/md.c) in the Linux kernel before 2.6.30.2 might all... |
| oval:org.mitre.oval:def:7359 | Linux Kernel 64-bit Kernel Register Memory Leak Local Information Disclosure ... |
| oval:org.mitre.oval:def:10823 | arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 p... |
| oval:org.mitre.oval:def:11741 | Service Console update for COS kernel |
| oval:org.mitre.oval:def:11611 | The Linux kernel before 2.6.31-rc7 does not initialize certain data structure... |
| oval:org.mitre.oval:def:7101 | Linux Kernel 'drivers/scsi/gdth.c' Local Privilege Escalation Vulnerability |
| oval:org.mitre.oval:def:12862 | ESX third party update for Service Console kernel |
| oval:org.mitre.oval:def:10989 | Array index error in the gdth_read_event function in drivers/scsi/gdth.c in t... |
| oval:org.mitre.oval:def:9409 | The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the... |
| oval:org.mitre.oval:def:6757 | Linux Kernel 2.4 and 2.6 Multiple Local Information Disclosure Vulnerabilities |
| oval:org.mitre.oval:def:11168 | The get_random_int function in drivers/char/random.c in the Linux kernel befo... |
| oval:org.mitre.oval:def:9327 | Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 a... |
| oval:org.mitre.oval:def:7608 | Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability |
| oval:org.mitre.oval:def:11513 | Service Console update for COS kernel |
| oval:org.mitre.oval:def:7557 | Linux Kernel 2.4 and 2.6 Local Information Disclosure Vulnerability |
| oval:org.mitre.oval:def:10395 | The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in... |
| oval:org.mitre.oval:def:9891 | The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 do... |
| oval:org.mitre.oval:def:6763 | Linux Kernel r128 Driver CCE Initialization NULL Pointer Dereference Denial o... |
| oval:org.mitre.oval:def:9921 | net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows local user... |
Open Source Vulnerability Database (OSVDB)
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 78302 | Linux Kernel m_stop() Implementation Local DoS |
| 78301 | Linux Kernel NSF O_Direct Implementation Local DoS |
| 77295 | Linux Kernel UFO IPv6 UDP Datagram Parsing Remote DoS |
| 77293 | Linux Kernel b43 Driver Wireless Interface Frame Parsing Remote DoS |
| 76805 | Linux Kernel net/core/net_namespace.c Network Namespace Cleanup Weakness Remo... |
| id | Description |
|---|---|
| 76666 | Linux Kernel ext4 Extent Splitting BUG_ON() Local DoS |
| 76177 | Linux Kernel Performance Events NMI Watchdog Local DoS |
| 75580 | Linux Kernel CIFS Share Mounting DIFS Referral BUG_ON() Remote DoS |
| 74881 | Linux Kernel si4713-i2c si4713_write_econtrol_string Function Radio Driver Lo... |
| 74823 | Linux Kernel fs/befs/linuxvfs.c befs_follow_link Function Be Filesystem Symli... |
| 74679 | Linux Kernel Bluetooth net/bluetooth/l2cap_core.c l2cap_config_req Function O... |
| 74660 | Linux Kernel NFS Server File Locking Local DoS |
| 74658 | Linux Kernel trigger_scan / sched_scan SSID Length Handling Bypass |
| 74657 | Linux Kernel Packet Scheduler API Implementation tc_fill_qdisc() Function NUL... |
| 74654 | Linux Kernel EFI GUID Partition Table (GPT) Implementation Crafted Partition ... |
| 74653 | Linux Kernel net/ipv4/inet_diag.c inet_diag_bc_audit() Function Local DoS |
| 74645 | Linux Kernel Common Internet File System (CIFS) Implementation cifs_close() F... |
| 74643 | Linux Kernel dev_load() Function CAP_NET_ADMIN Capability Arbitrary Module Lo... |
| 74635 | Linux Kernel AARESOLVE_OFFSET Memory Overwrite Local Privilege Escalation |
| 74138 | Linux Kernel GRO include/linux/netdevice.h skb_gro_header_slow() Function Rem... |
| 74123 | Linux Kernel ext4 Subsystem Extent Format Sparse File Off-by-one Local DoS |
| 73882 | Linux Kernel DCCP net/dccp/input.c dccp_rcv_state_process Function CLOSED End... |
| 73872 | Linux Kernel fs/proc/array.c do_task_stat Function Local ASLR Protection Mech... |
| 73802 | Linux Kernel fs/gfs2/file.c GFS2 gfs2_fallocate() Function Local DoS |
| 73460 | Linux Kernel Bluetooth net/bluetooth/rfcomm/sock.c rfcomm_sock_getsockopt_old... |
Milw0rm Exploits
| id | Description |
|---|---|
| 2009-08-26 | Linux Kernel <= 2.6.30 atalk_getname() 8-bytes Stack Disclosure Exploit |
| 2009-08-25 | Linux Kernel <= 2.6.31-rc7 AF_LLC getsockname 5-Byte Stack Disclosure |
ExploitDB Exploits
| id | Description |
|---|---|
| 17787 | Linux Kernel < 2.6.36.2 Econet Privilege Escalation Exploit |
| 15774 | Linux Kernel < 2.6.37-rc2 ACPI custom_method Privilege Escalation |
| 15704 | Linux Kernel <= 2.6.37 Local Privilege Escalation |
| 14814 | Linux Kernel < 2.6.36-rc1 CAN BCM Privilege Escalation Exploit |
| 9543 | Linux Kernel < 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit |
