Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2009-1648 | First vendor Publication | 2009-07-05 |
Vendor | Cve | Last vendor Modification | 2009-07-06 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 7.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
The YaST2 LDAP module in yast2-ldap-server on SUSE Linux Enterprise Server 11 (aka SLE11) does not enable the firewall in certain circumstances involving reboots during online updates, which makes it easier for remote attackers to access network services. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1648 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-16 | Configuration |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 2 |
OpenVAS Exploits
Date | Description |
---|---|
2009-10-11 | Name : SLES11: Security update for YaST2 LDAP module File : nvt/sles11_yast2-ldap-serv.nasl |
2009-07-06 | Name : SuSE Security Summary SUSE-SR:2009:012 File : nvt/suse_sr_2009_012.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
56093 | SUSE Linux Enterprise Server yast2-ldap-server YaST2 LDAP Module Online Updat... |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2009-09-24 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_yast2-ldap-server-090518.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Source | Url |
---|---|
SECUNIA | http://secunia.com/advisories/35685 |
SUSE | http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html |
Alert History
Date | Informations |
---|---|
2021-05-04 12:09:32 |
|
2021-04-22 01:09:53 |
|
2020-05-23 00:23:45 |
|
2016-04-26 18:49:29 |
|
2014-02-17 10:50:00 |
|
2013-05-10 23:50:17 |
|