This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:canonical:ubuntu_linux:6.06::~~lts~~~
Detail
VendorCanonicalFirst view 2006-08-21
ProductUbuntu LinuxLast view2016-12-16
Version6.06TypeOs
Edition~~lts~~~ 
Language 
Update 
 
CPE Productcpe:/o:canonical:ubuntu_linux

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32016-12-16CVE-2016-9950NetworkMediumNone Requ...
9.32016-12-16CVE-2016-9949NetworkMediumNone Requ...
7.22016-11-27CVE-2015-1328LocalLowNone Requ...
1.92010-09-29CVE-2010-3310LocalMediumNone Requ...
7.22010-09-29CVE-2010-3084LocalLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
2.12010-09-29CVE-2010-2946LocalLowNone Requ...
6.82010-06-24CVE-2010-2067NetworkMediumNone Requ...
4.92010-02-22CVE-2010-0410LocalLowNone Requ...
4.72010-02-17CVE-2010-0307LocalMediumNone Requ...
7.22009-11-06CVE-2009-3725LocalLowNone Requ...
4.92009-08-28CVE-2009-3002LocalLowNone Requ...
4.92009-08-28CVE-2009-3001LocalLowNone Requ...
7.22009-07-16CVE-2009-1895LocalLowNone Requ...
5.82009-06-24CVE-2009-1888NetworkMediumNone Requ...
7.12009-05-28CVE-2009-1633NetworkMediumNone Requ...
6.82008-12-17CVE-2008-5512NetworkMediumNone Requ...
4.32008-12-17CVE-2008-5511NetworkMediumNone Requ...
4.32008-12-17CVE-2008-5508NetworkMediumNone Requ...
62008-12-17CVE-2008-5507NetworkMediumRequires ...
6.82008-12-17CVE-2008-5506NetworkMediumNone Requ...
102008-12-17CVE-2008-5500NetworkLowNone Requ...
7.52008-11-13CVE-2008-5024NetworkLowNone Requ...
7.52008-11-13CVE-2008-5023NetworkLowNone Requ...
7.52008-11-13CVE-2008-5022NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
16% (12)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
14% (10)CWE-264Permissions, Privileges, and Access Controls
12% (9)CWE-20Improper Input Validation
11% (8)CWE-399Resource Management Errors
11% (8)CWE-189Numeric Errors
Hide | Show 12 More...
%idName
7% (5)CWE-200Information Exposure
7% (5)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
5% (4)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...
2% (2)CWE-94Failure to Control Generation of Code ('Code Injection')
1% (1)CWE-476NULL Pointer Dereference
1% (1)CWE-287Improper Authentication
1% (1)CWE-254Security Features
1% (1)CWE-190Integer Overflow or Wraparound
1% (1)CWE-91XML Injection (aka Blind XPath Injection)
1% (1)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...
1% (1)CWE-59Improper Link Resolution Before File Access ('Link Following')
1% (1)CWE-16Configuration

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-26Leveraging Race Conditions
CAPEC-29Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions
CAPEC-172Time and State Attacks

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:20182Third party component updates for VMware vCenter Server, vCenter Update Manag...
oval:org.mitre.oval:def:10870The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2....
oval:org.mitre.oval:def:6503Linux Kernel Memory Leak in SIT Code ipip6_rcv() Lets Remote Users Deny Service
oval:org.mitre.oval:def:11038Memory leak in the ipip6_rcv function in net/ipv6/sit.c in the Linux kernel 2...
oval:org.mitre.oval:def:10764A typo in Linux kernel 2.6 before 2.6.21-rc6 and 2.4 before 2.4.35 causes RTA...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:9453The personality subsystem in the Linux kernel before 2.6.31-rc3 has a PER_CLE...
oval:org.mitre.oval:def:7826VMware kernel personality subsystem vulnerability
oval:org.mitre.oval:def:11768Service Console update for COS kernel
oval:org.mitre.oval:def:9646The rb_str_format function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231...
oval:org.mitre.oval:def:17484USN-621-1 -- ruby1.8 vulnerabilities
oval:org.mitre.oval:def:20525Third party component updates for VMware vCenter Server, vCenter Update Manag...
oval:org.mitre.oval:def:10903drivers/connector/connector.c in the Linux kernel before 2.6.32.8 allows loca...
oval:org.mitre.oval:def:10612Multiple buffer overflows in Imagemagick 6.0 before 6.0.6.2, and 6.2 before 6...
oval:org.mitre.oval:def:7716Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability
oval:org.mitre.oval:def:13835USN-731-1 -- apache2 vulnerabilities
oval:org.mitre.oval:def:11316Cross-site scripting (XSS) vulnerability in proxy_ftp.c in the mod_proxy_ftp ...
oval:org.mitre.oval:def:21751ELSA-2008:0967: httpd security and bug fix update (Moderate)
oval:org.mitre.oval:def:29289RHSA-2008:0967 -- httpd security and bug fix update (Moderate)
oval:org.mitre.oval:def:11720sql_select.cc in MySQL 5.0.x before 5.0.32 and 5.1.x before 5.1.14 allows rem...
oval:org.mitre.oval:def:11053The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19...
oval:org.mitre.oval:def:4356Security Vulnerabilities in OpenSSL May Lead to a Denial of Service (DoS) to ...
oval:org.mitre.oval:def:10207The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 befor...
oval:org.mitre.oval:def:22332RHSA-2010:0505: perl-Archive-Tar security update (Moderate)
oval:org.mitre.oval:def:11658Directory traversal vulnerability in the Archive::Tar Perl module 1.36 and ea...
oval:org.mitre.oval:def:23048ELSA-2010:0505: perl-Archive-Tar security update (Moderate)

SAINT Exploits

DescriptionLink
Ubuntu overlayfs privilege elevationMore info here
MySQL yaSSL SSL Hello message buffer overflowMore info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
68289Linux Kernel fs/jfs/xattr.c Extended Attribute Storage Legacy Format xattr Na...
68163Linux Kernel net/rose/af_rose.c Multiple Function Signedness Error Local DoS
67897Linux Kernel drivers/net/niu.c niu_get_ethtool_tcam_all() Function Crafted ET...
65676LibTIFF tif_dirread.c TIFFFetchSubjectDistance Function SubjectDistance Field...
62079Linux Kernel drivers/connector/connector.c Notification Code Local DoS
Hide | Show 20 More...
idDescription
62045Linux Kernel on x86_64 fs/binfmt_elf.c load_elf_binary Function Personality H...
59449Linux Kernel Connector Netlink Packet Local Privilege Escalation
57428Linux Kernel proto_ops .getname Function Arbitrary Kernel Memory Disclosure
57427Linux Kernel af_llc.c getsockname() Function Kernel Stack Fragment Disclosure
55807Linux Kernel PER_CLEAR_ON_SETID Mask Local Security Restriction Bypass
55411Samba smbd/posix_acls.c acl_group_override Function Remote Access Control Lis...
54498Linux Kernel CIFS String Conversion Multiple Local Overflows
51435Vim execute/system Function Arbitrary Command Execution
51296Mozilla Multiple Products XPCNativeWrappers Pollution JavaScript Privilege Es...
51295Mozilla Multiple Products XBL Binding Unloaded Document XSS
51293Mozilla Multiple Products Whitespace / Control Character URL Handling Phishin...
51292Mozilla Multiple Products window.onerror DOM API Same-origin Policy Bypass In...
51291Mozilla Multiple Products XMLHttpRequest 302 Redirect Same-origin Policy Bypa...
51285Mozilla Multiple Products Layout Engine nsEscapeHTML2 Overflow
51284Mozilla Multiple Products Layout Engine PresShell::InitialReflow XUL iframe O...
50182Mozilla Multiple Products Codebase Principals Protection Mechanism Bypass Sig...
50181Mozilla Multiple Products nsXMLHttpRequest::NotifyEventListeners Method Same-...
50179Mozilla Multiple Products nsFrameManager File Input Element Modification Blur...
50178Mozilla Multiple Products Session Restore Feature Same-origin Policy Bypass C...
50177Mozilla Multiple Products JavaScript Engine Date Class Unspecified Remote DoS

ExploitDB Exploits

idDescription
28726OpenSSL SSLv2 Null Pointer Dereference Client Denial of Service Vulnerability
9543Linux Kernel < 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit
4773OpenSSL < 0.9.7l / 0.9.8d - SSLv2 Client Crash Exploit

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-09-26Name : Gentoo Security Advisory GLSA 201209-02 (tiff)
File : nvt/glsa_201209_02.nasl
2012-06-21Name : PHP version smaller than 5.2.1
File : nvt/nopsec_php_5_2_1.nasl
2012-06-21Name : PHP version smaller than 5.2.7
File : nvt/nopsec_php_5_2_7.nasl
2012-06-21Name : PHP version smaller than 4.4.5
File : nvt/nopsec_php_4_4_5.nasl
2012-06-21Name : PHP version smaller than 4.4.8
File : nvt/nopsec_php_4_4_8.nasl
Hide | Show 20 More...
idDescription
2012-03-16Name : VMSA-2011-0003.2 Third party component updates for VMware vCenter Server, vCe...
File : nvt/gb_VMSA-2011-0003.nasl
2012-03-16Name : Ubuntu Update for mysql-5.1 USN-1397-1
File : nvt/gb_ubuntu_USN_1397_1.nasl
2012-03-15Name : VMSA-2010-0016 VMware ESXi and ESX third party updates for Service Console an...
File : nvt/gb_VMSA-2010-0016.nasl
2012-02-12Name : Gentoo Security Advisory GLSA 201201-02 (MySQL)
File : nvt/glsa_201201_02.nasl
2011-08-09Name : CentOS Update for kernel CESA-2009:0001-01 centos2 i386
File : nvt/gb_CESA-2009_0001-01_kernel_centos2_i386.nasl
2011-08-09Name : CentOS Update for thunderbird CESA-2009:0002 centos4 i386
File : nvt/gb_CESA-2009_0002_thunderbird_centos4_i386.nasl
2011-08-09Name : CentOS Update for thunderbird CESA-2009:0002 centos5 i386
File : nvt/gb_CESA-2009_0002_thunderbird_centos5_i386.nasl
2011-08-09Name : CentOS Update for kernel CESA-2009:0014 centos4 i386
File : nvt/gb_CESA-2009_0014_kernel_centos4_i386.nasl
2011-08-09Name : CentOS Update for mysql CESA-2010:0109 centos5 i386
File : nvt/gb_CESA-2010_0109_mysql_centos5_i386.nasl
2011-08-09Name : CentOS Update for kernel CESA-2010:0398 centos5 i386
File : nvt/gb_CESA-2010_0398_kernel_centos5_i386.nasl
2011-08-09Name : CentOS Update for kernel CESA-2009:1106 centos5 i386
File : nvt/gb_CESA-2009_1106_kernel_centos5_i386.nasl
2011-08-09Name : CentOS Update for perl-Archive-Tar CESA-2010:0505 centos5 i386
File : nvt/gb_CESA-2010_0505_perl-Archive-Tar_centos5_i386.nasl
2011-08-09Name : CentOS Update for kernel CESA-2009:1193 centos5 i386
File : nvt/gb_CESA-2009_1193_kernel_centos5_i386.nasl
2011-08-09Name : CentOS Update for mysql CESA-2009:1289 centos5 i386
File : nvt/gb_CESA-2009_1289_mysql_centos5_i386.nasl
2011-08-09Name : CentOS Update for kernel CESA-2009:1438 centos4 i386
File : nvt/gb_CESA-2009_1438_kernel_centos4_i386.nasl
2011-08-09Name : CentOS Update for samba CESA-2009:1529 centos4 i386
File : nvt/gb_CESA-2009_1529_samba_centos4_i386.nasl
2011-08-09Name : CentOS Update for samba CESA-2009:1529 centos5 i386
File : nvt/gb_CESA-2009_1529_samba_centos5_i386.nasl
2011-08-09Name : CentOS Update for kernel CESA-2009:1550 centos3 i386
File : nvt/gb_CESA-2009_1550_kernel_centos3_i386.nasl
2011-06-24Name : Fedora Update for kernel FEDORA-2011-6447
File : nvt/gb_fedora_2011_6447_kernel_fc13.nasl
2011-04-19Name : Fedora Update for libtiff FEDORA-2011-3827
File : nvt/gb_fedora_2011_3827_libtiff_fc13.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2014-A-0009Multiple Vulnerabilities in Oracle Fusion Middleware
Severity : Category I - VMSKEY : V0043395
2011-A-0066Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0027158
2009-A-0105Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0021867

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2014-01-10IPv6 packets encapsulated in IPv4
RuleID : 8446 - Type : POLICY-OTHER - Revision : 8
2017-09-21Mozilla Firefox memory corruption attempt
RuleID : 44049 - Type : BROWSER-FIREFOX - Revision : 2
2017-09-21Mozilla Firefox memory corruption attempt
RuleID : 44048 - Type : BROWSER-FIREFOX - Revision : 2
2017-09-21Mozilla Firefox memory corruption attempt
RuleID : 44047 - Type : BROWSER-FIREFOX - Revision : 2
2017-09-21Mozilla Firefox memory corruption attempt
RuleID : 44046 - Type : BROWSER-FIREFOX - Revision : 2
Hide | Show 21 More...
DateDescription
2017-09-21Mozilla Firefox invalid watchpoint memory corruption attempt
RuleID : 44045 - Type : BROWSER-FIREFOX - Revision : 2
2017-09-21Mozilla Firefox invalid watchpoint memory corruption attempt
RuleID : 44044 - Type : BROWSER-FIREFOX - Revision : 2
2017-09-21Mozilla browsers JavaScript argument passing code execution attempt
RuleID : 44043 - Type : BROWSER-FIREFOX - Revision : 1
2017-08-29Mozilla Firefox BOM character cross site scripting attempt
RuleID : 43749 - Type : BROWSER-FIREFOX - Revision : 2
2017-08-29Mozilla Firefox BOM character cross site scripting attempt
RuleID : 43748 - Type : BROWSER-FIREFOX - Revision : 2
2017-01-19Ubuntu Apport CrashDB crash report code injection attempt
RuleID : 41041 - Type : OS-LINUX - Revision : 2
2017-01-19Ubuntu Apport CrashDB crash report code injection attempt
RuleID : 41040 - Type : OS-LINUX - Revision : 2
2016-10-25Mozilla Firefox file type memory corruption attempt
RuleID : 40280 - Type : BROWSER-FIREFOX - Revision : 1
2014-01-10Multiple Products IFRAME src javascript code execution
RuleID : 3679 - Type : INDICATOR-OBFUSCATION - Revision : 18
2014-01-10DECODE_IPV6_TUNNELED_IPV4_TRUNCATED
RuleID : 291 - Type : DECODE_IPV6_TUNNELED_IPV4_TRUNCATED - Revision : 1
2014-01-10yaSSL SSL Hello Message Buffer Overflow attempt
RuleID : 18513 - Type : SERVER-MYSQL - Revision : 13
2014-01-10Mozilla products frame comment objects manipulation memory corruption attempt
RuleID : 18296 - Type : BROWSER-FIREFOX - Revision : 5
2014-01-10Mozilla Firefox file type memory corruption attempt
RuleID : 17603 - Type : BROWSER-FIREFOX - Revision : 10
2014-01-10Mozilla browsers JavaScript argument passing code execution attempt
RuleID : 16005 - Type : BROWSER-FIREFOX - Revision : 12
2014-01-10Mozilla products frame comment objects manipulation memory corruption attempt
RuleID : 15999 - Type : BROWSER-FIREFOX - Revision : 9
2014-01-10yaSSL SSLv3 Client Hello Message Cipher Specs Buffer Overflow attempt
RuleID : 13714 - Type : SERVER-MYSQL - Revision : 16
2014-01-10yaSSL SSLv2 Client Hello Message Challenge Buffer Overflow attempt
RuleID : 13713 - Type : MYSQL - Revision : 9
2014-01-10yaSSL SSLv2 Client Hello Message Session ID Buffer Overflow attempt
RuleID : 13712 - Type : MYSQL - Revision : 9
2014-01-10yaSSL SSLv2 Client Hello Message Cipher Length Buffer Overflow attempt
RuleID : 13711 - Type : MYSQL - Revision : 9
2014-01-10yaSSL SSL Hello Message Buffer Overflow attempt
RuleID : 13593 - Type : MYSQL - Revision : 7

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2016-12-15Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-3157-1.nasl - Type : ACT_GATHER_INFO
2016-03-08Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-0677-1.nasl - Type : ACT_GATHER_INFO
2016-03-08Name : The remote VMware ESX host is missing a security-related patch.
File : vmware_VMSA-2010-0006_remote.nasl - Type : ACT_GATHER_INFO
2016-03-04Name : The remote VMware ESX / ESXi host is missing a security-related patch.
File : vmware_VMSA-2011-0003_remote.nasl - Type : ACT_GATHER_INFO
2016-03-03Name : The remote host is missing a security-related patch.
File : vmware_VMSA-2009-0014_remote.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2016-03-03Name : The remote host is missing a security-related patch.
File : vmware_VMSA-2009-0016_remote.nasl - Type : ACT_GATHER_INFO
2016-03-03Name : The remote host is missing a security-related patch.
File : vmware_VMSA-2009-0004_remote.nasl - Type : ACT_GATHER_INFO
2016-02-26Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-271.nasl - Type : ACT_GATHER_INFO
2016-02-25Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-0555-1.nasl - Type : ACT_GATHER_INFO
2016-02-24Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-253.nasl - Type : ACT_GATHER_INFO
2016-02-23Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-0539-1.nasl - Type : ACT_GATHER_INFO
2015-09-18Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL8106.nasl - Type : ACT_GATHER_INFO
2015-06-22Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2640-2.nasl - Type : ACT_GATHER_INFO
2015-06-22Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2642-2.nasl - Type : ACT_GATHER_INFO
2015-06-22Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2643-2.nasl - Type : ACT_GATHER_INFO
2015-06-22Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2644-2.nasl - Type : ACT_GATHER_INFO
2015-06-22Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2646-2.nasl - Type : ACT_GATHER_INFO
2015-06-16Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2640-1.nasl - Type : ACT_GATHER_INFO
2015-06-16Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2642-1.nasl - Type : ACT_GATHER_INFO
2015-06-16Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2643-1.nasl - Type : ACT_GATHER_INFO
2015-06-16Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2644-1.nasl - Type : ACT_GATHER_INFO
2015-06-16Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2645-1.nasl - Type : ACT_GATHER_INFO
2015-06-16Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2646-1.nasl - Type : ACT_GATHER_INFO
2015-06-16Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2647-1.nasl - Type : ACT_GATHER_INFO
2015-01-19Name : The remote Solaris system is missing a security patch for third-party software.
File : solaris11_mysql_20130924.nasl - Type : ACT_GATHER_INFO