This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Novell First view 2007-01-23
Product Suse Linux Last view 2011-01-12
Version 10 Type Os
Update sp3  
Edition enterprise  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:novell:suse_linux

Activity : Overall

Related : CVE

  Date Alert Description
10 2011-01-12 CVE-2010-3912

The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not "disguise passwords" in configuration files, which has unknown impact and attack vectors.

10 2007-01-23 CVE-2007-0460

Multiple buffer overflows in ulogd for SUSE Linux 9.3 up to 10.1, and possibly other distributions, have unknown impact and attack vectors related to "improper string length calculations."

CWE : Common Weakness Enumeration

%idName
50% (1) CWE-255 Credentials Management
50% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

Open Source Vulnerability Database (OSVDB)

id Description
70405 supportutils supportconfig on SUSE Configuration File Undisguised Passwords U...
32939 ulogd Multiple Unspecified Overflows

OpenVAS Exploits

id Description
2008-09-24 Name : Gentoo Security Advisory GLSA 200703-17 (ulogd)
File : nvt/glsa_200703_17.nasl

Nessus® Vulnerability Scanner

id Description
2011-01-21 Name: The remote SuSE 11 host is missing a security update.
File: suse_11_supportutils-101104.nasl - Type: ACT_GATHER_INFO
2011-01-10 Name: The remote SuSE 10 host is missing a security-related patch.
File: suse_supportutils-7215.nasl - Type: ACT_GATHER_INFO
2007-03-19 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-200703-17.nasl - Type: ACT_GATHER_INFO