This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Redhat First view 2008-05-23
Product Enterprise Linux Last view 2015-08-14
Version 3.0 Type Os
Update *  
Edition ws  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:redhat:enterprise_linux

Activity : Overall

Related : CVE

  Date Alert Description
5 2015-08-14 CVE-2015-1819

The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.

6.9 2009-07-17 CVE-2009-1893

The configtest function in the Red Hat dhcpd init script for DHCP 3.0.1 in Red Hat Enterprise Linux (RHEL) 3 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file, related to the "dhcpd -t" command.

7.5 2008-05-23 CVE-2008-1767

Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps.

CWE : Common Weakness Enumeration

%idName
33% (1) CWE-399 Resource Management Errors
33% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
33% (1) CWE-59 Improper Link Resolution Before File Access ('Link Following')

Open Source Vulnerability Database (OSVDB)

id Description
56464 Red Hat Linux DHCP dhcpd configtest Function Symlink Arbitrary File Overwrite
45419 libxslt XSL Style-sheet File Processing Arbitrary Code Execution

OpenVAS Exploits

id Description
2011-08-09 Name : CentOS Update for dhclient CESA-2009:1154 centos3 i386
File : nvt/gb_CESA-2009_1154_dhclient_centos3_i386.nasl
2010-05-12 Name : Mac OS X Security Update 2008-007
File : nvt/macosx_secupd_2008-007.nasl
2009-11-17 Name : Mac OS X Version
File : nvt/macosx_version.nasl
2009-10-13 Name : SLES10: Security update for libxslt
File : nvt/sles10_libxslt0.nasl
2009-10-10 Name : SLES9: Security update for libxslt
File : nvt/sles9p5028020.nasl
2009-07-29 Name : RedHat Security Advisory RHSA-2009:1154
File : nvt/RHSA_2009_1154.nasl
2009-07-29 Name : CentOS Security Advisory CESA-2009:1154 (dhcp)
File : nvt/ovcesa2009_1154.nasl
2009-04-09 Name : Mandriva Update for libxslt MDVSA-2008:151 (libxslt)
File : nvt/gb_mandriva_MDVSA_2008_151.nasl
2009-03-23 Name : Ubuntu Update for libxslt vulnerabilities USN-633-1
File : nvt/gb_ubuntu_USN_633_1.nasl
2009-03-06 Name : RedHat Update for libxslt RHSA-2008:0287-01
File : nvt/gb_RHSA-2008_0287-01_libxslt.nasl
2009-02-27 Name : CentOS Update for libxslt CESA-2008:0287-01 centos2 i386
File : nvt/gb_CESA-2008_0287-01_libxslt_centos2_i386.nasl
2009-02-27 Name : CentOS Update for libxslt CESA-2008:0287 centos3 i386
File : nvt/gb_CESA-2008_0287_libxslt_centos3_i386.nasl
2009-02-27 Name : CentOS Update for libxslt CESA-2008:0287 centos3 x86_64
File : nvt/gb_CESA-2008_0287_libxslt_centos3_x86_64.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200806-02 (libxslt)
File : nvt/glsa_200806_02.nasl
0000-00-00 Name : Slackware Advisory SSA:2008-210-03 libxslt
File : nvt/esoft_slk_ssa_2008_210_03.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2009-A-0105 Multiple Vulnerabilities in VMware Products
Severity: Category I - VMSKEY: V0021867

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2017-01-17 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201701-37.nasl - Type: ACT_GATHER_INFO
2016-04-01 Name: The remote device is affected by multiple vulnerabilities.
File: appletv_9_2.nasl - Type: ACT_GATHER_INFO
2016-03-22 Name: The remote host is missing a Mac OS X update that fixes multiple vulnerabilit...
File: macosx_SecUpd2016-002.nasl - Type: ACT_GATHER_INFO
2016-03-22 Name: The remote Mac OS X host is affected by multiple vulnerabilities.
File: macosx_10_11_4.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote Fedora host is missing a security update.
File: fedora_2015-c24af963a2.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote Fedora host is missing a security update.
File: fedora_2015-037f844d3e.nasl - Type: ACT_GATHER_INFO
2016-03-03 Name: The remote host is missing a security-related patch.
File: vmware_VMSA-2009-0014_remote.nasl - Type: ACT_GATHER_INFO
2016-01-25 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-32.nasl - Type: ACT_GATHER_INFO
2016-01-12 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2016-0049-1.nasl - Type: ACT_GATHER_INFO
2016-01-12 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2016-0030-1.nasl - Type: ACT_GATHER_INFO
2015-12-29 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2015-959.nasl - Type: ACT_GATHER_INFO
2015-12-29 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3430.nasl - Type: ACT_GATHER_INFO
2015-12-22 Name: The remote Scientific Linux host is missing one or more security updates.
File: sl_20151207_libxml2_on_SL7_x.nasl - Type: ACT_GATHER_INFO
2015-12-15 Name: The remote Amazon Linux AMI host is missing a security update.
File: ala_ALAS-2015-628.nasl - Type: ACT_GATHER_INFO
2015-12-08 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2015-2550.nasl - Type: ACT_GATHER_INFO
2015-12-08 Name: The remote Oracle Linux host is missing one or more security updates.
File: oraclelinux_ELSA-2015-2550.nasl - Type: ACT_GATHER_INFO
2015-12-08 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2015-2550.nasl - Type: ACT_GATHER_INFO
2015-11-17 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-2812-1.nasl - Type: ACT_GATHER_INFO
2015-08-04 Name: The remote Scientific Linux host is missing one or more security updates.
File: sl_20150722_libxml2_on_SL6_x.nasl - Type: ACT_GATHER_INFO
2015-07-31 Name: The remote OracleVM host is missing one or more security updates.
File: oraclevm_OVMSA-2015-0097.nasl - Type: ACT_GATHER_INFO
2015-07-30 Name: The remote Oracle Linux host is missing one or more security updates.
File: oraclelinux_ELSA-2015-1419.nasl - Type: ACT_GATHER_INFO
2015-07-28 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2015-1419.nasl - Type: ACT_GATHER_INFO
2015-07-23 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2015-1419.nasl - Type: ACT_GATHER_INFO
2015-07-08 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201507-08.nasl - Type: ACT_GATHER_INFO
2015-07-06 Name: The remote Debian host is missing a security update.
File: debian_DLA-266.nasl - Type: ACT_GATHER_INFO