This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Novell First view 2007-01-23
Product Suse Linux Last view 2009-10-23
Version 10 Type Os
Update sp2  
Edition enterprise  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:novell:suse_linux

Activity : Overall

Related : CVE

  Date Alert Description
4.4 2009-10-23 CVE-2009-1297

iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE) 10 SP2 and 11, and other operating systems, allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file that has a predictable name.

10 2007-01-23 CVE-2007-0460

Multiple buffer overflows in ulogd for SUSE Linux 9.3 up to 10.1, and possibly other distributions, have unknown impact and attack vectors related to "improper string length calculations."

CWE : Common Weakness Enumeration

%idName
50% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
50% (1) CWE-59 Improper Link Resolution Before File Access ('Link Following')

Open Source Vulnerability Database (OSVDB)

id Description
59271 open-iscsi iscsi_discovery in SUSE Unspecified Temporary File Symlink Arbitra...
32939 ulogd Multiple Unspecified Overflows

OpenVAS Exploits

id Description
2011-10-21 Name : Ubuntu Update for open-iscsi USN-1235-1
File : nvt/gb_ubuntu_USN_1235_1.nasl
2009-10-19 Name : SuSE Security Summary SUSE-SR:2009:016
File : nvt/suse_sr_2009_016.nasl
2009-10-13 Name : SLES10: Security update for open-iscsi
File : nvt/sles10_open-iscsi.nasl
2009-10-11 Name : SLES11: Security update for open-iscsi
File : nvt/sles11_open-iscsi.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200703-17 (ulogd)
File : nvt/glsa_200703_17.nasl

Nessus® Vulnerability Scanner

id Description
2013-04-20 Name: The remote Mandriva Linux host is missing a security update.
File: mandriva_MDVSA-2013-109.nasl - Type: ACT_GATHER_INFO
2011-10-21 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-1235-1.nasl - Type: ACT_GATHER_INFO
2009-10-06 Name: The remote openSUSE host is missing a security update.
File: suse_open-iscsi-6454.nasl - Type: ACT_GATHER_INFO
2009-09-24 Name: The remote SuSE 11 host is missing a security update.
File: suse_11_open-iscsi-090821.nasl - Type: ACT_GATHER_INFO
2009-09-24 Name: The remote SuSE 10 host is missing a security-related patch.
File: suse_open-iscsi-6455.nasl - Type: ACT_GATHER_INFO
2009-09-18 Name: The remote openSUSE host is missing a security update.
File: suse_11_0_open-iscsi-090821.nasl - Type: ACT_GATHER_INFO
2009-09-18 Name: The remote openSUSE host is missing a security update.
File: suse_11_1_open-iscsi-090821.nasl - Type: ACT_GATHER_INFO
2007-03-19 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-200703-17.nasl - Type: ACT_GATHER_INFO