This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Redhat First view 2010-05-12
Product Enterprise Linux Last view 2017-06-19
Version 5 Type Os
Update *  
Edition server  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:redhat:enterprise_linux

Activity : Overall

Related : CVE

  Date Alert Description
7.8 2017-06-19 CVE-2017-1000366

glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causing them to alias, potentially resulting in arbitrary code execution. Please note that additional hardening changes have been made to glibc to prevent manipulation of stack and heap memory but these issues are not directly exploitable, as such they have not been given a CVE. This affects glibc 2.25 and earlier.

5 2015-08-14 CVE-2015-1819

The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.

7.5 2014-01-31 CVE-2014-0001

Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string.

4.3 2013-05-21 CVE-2012-6137

rhn-migrate-classic-to-rhsm tool in Red Hat subscription-manager does not verify the Red Hat Network Classic server's X.509 certificate when migrating to a Certificate-based Red Hat Network, which allows remote man-in-the-middle attackers to obtain sensitive information such as user credentials.

1.2 2012-06-13 CVE-2012-2313

The rio_ioctl function in drivers/net/ethernet/dlink/dl2k.c in the Linux kernel before 3.3.7 does not restrict access to the SIOCSMIIREG command, which allows local users to write data to an Ethernet adapter via an ioctl call.

2.6 2010-05-12 CVE-2010-0730

The MMIO instruction decoder in the Xen hypervisor in the Linux kernel 2.6.18 in Red Hat Enterprise Linux (RHEL) 5 allows guest OS users to cause a denial of service (32-bit guest OS crash) via vectors that trigger an unspecified instruction emulation.

CWE : Common Weakness Enumeration

%idName
33% (2) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
16% (1) CWE-399 Resource Management Errors
16% (1) CWE-264 Permissions, Privileges, and Access Controls
16% (1) CWE-255 Credentials Management
16% (1) CWE-20 Improper Input Validation

Open Source Vulnerability Database (OSVDB)

id Description
64630 Linux Kernel Xen Hypervisor MMIO Instruction Decoder Instruction Emulation DoS

OpenVAS Exploits

id Description
2012-09-27 Name : CentOS Update for kernel CESA-2012:1304 centos6
File : nvt/gb_CESA-2012_1304_kernel_centos6.nasl
2012-09-27 Name : RedHat Update for kernel RHSA-2012:1304-01
File : nvt/gb_RHSA-2012_1304-01_kernel.nasl
2012-08-24 Name : CentOS Update for kernel CESA-2012:1174 centos5
File : nvt/gb_CESA-2012_1174_kernel_centos5.nasl
2012-08-24 Name : RedHat Update for kernel RHSA-2012:1174-01
File : nvt/gb_RHSA-2012_1174-01_kernel.nasl
2012-08-14 Name : Ubuntu Update for linux-ti-omap4 USN-1530-1
File : nvt/gb_ubuntu_USN_1530_1.nasl
2012-07-03 Name : Ubuntu Update for linux USN-1488-1
File : nvt/gb_ubuntu_USN_1488_1.nasl
2012-07-03 Name : Ubuntu Update for linux-lts-backport-natty USN-1490-1
File : nvt/gb_ubuntu_USN_1490_1.nasl
2012-07-03 Name : Ubuntu Update for linux-ec2 USN-1491-1
File : nvt/gb_ubuntu_USN_1491_1.nasl
2012-07-03 Name : Ubuntu Update for linux USN-1492-1
File : nvt/gb_ubuntu_USN_1492_1.nasl
2012-07-03 Name : Ubuntu Update for linux USN-1493-1
File : nvt/gb_ubuntu_USN_1493_1.nasl
2012-06-19 Name : Ubuntu Update for linux-ti-omap4 USN-1476-1
File : nvt/gb_ubuntu_USN_1476_1.nasl
2012-06-15 Name : Ubuntu Update for linux-lts-backport-oneiric USN-1471-1
File : nvt/gb_ubuntu_USN_1471_1.nasl
2012-06-15 Name : Ubuntu Update for linux USN-1472-1
File : nvt/gb_ubuntu_USN_1472_1.nasl
2012-06-15 Name : Ubuntu Update for linux USN-1473-1
File : nvt/gb_ubuntu_USN_1473_1.nasl
2012-06-15 Name : Ubuntu Update for linux-ti-omap4 USN-1474-1
File : nvt/gb_ubuntu_USN_1474_1.nasl
2012-03-16 Name : VMSA-2011-0003.2 Third party component updates for VMware vCenter Server, vCe...
File : nvt/gb_VMSA-2011-0003.nasl
2011-08-09 Name : CentOS Update for kernel CESA-2010:0398 centos5 i386
File : nvt/gb_CESA-2010_0398_kernel_centos5_i386.nasl
2010-05-07 Name : RedHat Update for kernel RHSA-2010:0398-01
File : nvt/gb_RHSA-2010_0398-01_kernel.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2011-A-0066 Multiple Vulnerabilities in VMware Products
Severity: Category I - VMSKEY: V0027158

Snort® IPS/IDS

Date Description
2014-11-16 MySQL/MariaDB mysql.cc buffer overflow attempt
RuleID : 31570 - Type : SERVER-MYSQL - Revision : 3

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2019-01-10 Name: The remote device is affected by multiple vulnerabilities.
File: juniper_space_jsa10917_184R1.nasl - Type: ACT_GATHER_INFO
2018-08-17 Name: The remote PhotonOS host is missing multiple security updates.
File: PhotonOS_PHSA-2017-0022.nasl - Type: ACT_GATHER_INFO
2018-08-17 Name: The remote PhotonOS host is missing multiple security updates.
File: PhotonOS_PHSA-2017-0023.nasl - Type: ACT_GATHER_INFO
2018-05-24 Name: The remote device is missing a vendor-supplied security patch.
File: f5_bigip_SOL20486351.nasl - Type: ACT_GATHER_INFO
2017-10-23 Name: The remote device is affected by multiple vulnerabilities.
File: juniper_space_jsa_10826.nasl - Type: ACT_GATHER_INFO
2017-08-15 Name: The remote host running McAfee Web Gateway is affected by multiple code execu...
File: mcafee_web_gateway_sb10205.nasl - Type: ACT_GATHER_INFO
2017-08-08 Name: The remote EulerOS host is missing multiple security updates.
File: EulerOS_SA-2017-1146.nasl - Type: ACT_GATHER_INFO
2017-08-08 Name: The remote EulerOS host is missing multiple security updates.
File: EulerOS_SA-2017-1147.nasl - Type: ACT_GATHER_INFO
2017-07-31 Name: The remote OracleVM host is missing one or more security updates.
File: oraclevm_OVMSA-2017-0124.nasl - Type: ACT_GATHER_INFO
2017-07-17 Name: The remote Fedora host is missing a security update.
File: fedora_2017-d80ab96e61.nasl - Type: ACT_GATHER_INFO
2017-07-13 Name: The remote Virtuozzo host is missing a security update.
File: Virtuozzo_VZLSA-2017-1480.nasl - Type: ACT_GATHER_INFO
2017-07-13 Name: The remote Virtuozzo host is missing a security update.
File: Virtuozzo_VZLSA-2017-1481.nasl - Type: ACT_GATHER_INFO
2017-07-03 Name: The remote Slackware host is missing a security update.
File: Slackware_SSA_2017-181-01.nasl - Type: ACT_GATHER_INFO
2017-06-30 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-715.nasl - Type: ACT_GATHER_INFO
2017-06-30 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-3323-2.nasl - Type: ACT_GATHER_INFO
2017-06-28 Name: The remote Fedora host is missing a security update.
File: fedora_2017-698daef73c.nasl - Type: ACT_GATHER_INFO
2017-06-23 Name: The remote Fedora host is missing a security update.
File: fedora_2017-79414fefa1.nasl - Type: ACT_GATHER_INFO
2017-06-21 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2017-1480.nasl - Type: ACT_GATHER_INFO
2017-06-21 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2017-1481.nasl - Type: ACT_GATHER_INFO
2017-06-21 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201706-19.nasl - Type: ACT_GATHER_INFO
2017-06-20 Name: The remote Amazon Linux AMI host is missing a security update.
File: ala_ALAS-2017-844.nasl - Type: ACT_GATHER_INFO
2017-06-20 Name: The remote Debian host is missing a security update.
File: debian_DLA-992.nasl - Type: ACT_GATHER_INFO
2017-06-20 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3887.nasl - Type: ACT_GATHER_INFO
2017-06-20 Name: The remote Oracle Linux host is missing one or more security updates.
File: oraclelinux_ELSA-2017-1480.nasl - Type: ACT_GATHER_INFO
2017-06-20 Name: The remote Oracle Linux host is missing one or more security updates.
File: oraclelinux_ELSA-2017-1481.nasl - Type: ACT_GATHER_INFO