This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/o:novell:suse_linux:11::server |
| Detail | |||
|---|---|---|---|
| Vendor | Novell | First view | 2005-10-27 |
| Product | Suse Linux | Last view | 2015-04-16 |
| Version | 11 | Type | Os |
| Edition | server | ||
| Language | |||
| Update | |||
Activity : Overall
COMMON PLATFORM ENUMERATION : Repartition per Version
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 4 | 2015-04-16 | CVE-2015-2573 | Network | Low | Requires ... | |
| 4 | 2015-04-16 | CVE-2015-2571 | Network | Low | Requires ... | |
| 5 | 2015-04-16 | CVE-2015-2568 | Network | Low | None Requ... | |
| 3.5 | 2015-04-16 | CVE-2015-2567 | Network | Medium | Requires ... | |
| 2.8 | 2015-04-16 | CVE-2015-2566 | Network | Medium | Requires ... | |
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 4.3 | 2013-12-01 | CVE-2012-0414 | Network | Medium | None Requ... | |
| 7.8 | 2013-07-29 | CVE-2013-4854 | Network | Low | None Requ... | |
| 9.3 | 2013-02-08 | CVE-2013-0170 | Network | Medium | None Requ... | |
| 4.4 | 2011-04-18 | CVE-2011-0988 | Local | Medium | None Requ... | |
| 10 | 2011-01-12 | CVE-2010-3912 | Network | Low | None Requ... | |
| 7.2 | 2010-10-12 | CVE-2010-3110 | Local | Low | None Requ... | |
| 5 | 2010-09-03 | CVE-2010-1507 | Network | Low | None Requ... | |
| 4.3 | 2010-09-03 | CVE-2010-1325 | Network | Medium | None Requ... | |
| 4.4 | 2009-10-23 | CVE-2009-1297 | Local | Medium | None Requ... | |
| 4.3 | 2009-04-09 | CVE-2008-2025 | Network | Medium | None Requ... | |
| 7.2 | 2008-11-26 | CVE-2008-4636 | Local | Low | None Requ... | |
| 4.6 | 2007-08-20 | CVE-2007-4432 | Local | Low | None Requ... | |
| 2.1 | 2007-08-17 | CVE-2007-4394 | Local | Low | None Requ... | |
| 10 | 2007-01-23 | CVE-2007-0460 | Network | Low | None Requ... | |
| 2.6 | 2006-10-10 | CVE-2006-5229 | Network | High | None Requ... | |
| 5 | 2006-02-23 | CVE-2006-0803 | Network | Low | None Requ... | |
| 2.1 | 2005-12-31 | CVE-2005-4791 | Local | Low | None Requ... | |
| 6.9 | 2005-12-31 | CVE-2005-4790 | Local | Medium | None Requ... | |
| 4.6 | 2005-10-27 | CVE-2005-3321 | Local | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 16% (2) | CWE-255 | Credentials Management |
| 16% (2) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 16% (2) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 8% (1) | CWE-399 | Resource Management Errors |
| 8% (1) | CWE-352 | Cross-Site Request Forgery (CSRF) |
| % | id | Name |
|---|---|---|
| 8% (1) | CWE-264 | Permissions, Privileges, and Access Controls |
| 8% (1) | CWE-200 | Information Exposure |
| 8% (1) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
| 8% (1) | CWE-20 | Improper Input Validation |
CAPEC : Common Attack Pattern Enumeration & Classification
| id | Name |
|---|---|
| CAPEC-18 | Embedding Scripts in Nonscript Elements |
| CAPEC-21 | Exploitation of Session Variables, Resource IDs and other Trusted Credentials |
| CAPEC-31 | Accessing/Intercepting/Modifying HTTP Cookies |
| CAPEC-63 | Simple Script Injection |
| CAPEC-73 | User-Controlled Filename |
| id | Name |
|---|---|
| CAPEC-81 | Web Logs Tampering |
| CAPEC-85 | Client Network Footprinting (using AJAX/XSS) |
| CAPEC-86 | Embedding Script (XSS ) in HTTP Headers |
| CAPEC-104 | Cross Zone Scripting |
| CAPEC-167 | Lifting Sensitive Data from the Client |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 74998 | pure-ftpd for SUSE Linux Enterprise Server OES pure-ftpd Netware Extensions W... |
| 70405 | supportutils supportconfig on SUSE Configuration File Undisguised Passwords U... |
| 67915 | openSUSE Novell Client novfs /proc Interface Multiple Unspecified Overflow |
| 67846 | SUSE Lifecycle Management Server on SUSE Linux Enterprise apache2-slms Parame... |
| 67845 | SUSE Linux Enterprise yast2-webclient WebYaST Appliance Fixed Secret Key Sess... |
| id | Description |
|---|---|
| 59271 | open-iscsi iscsi_discovery in SUSE Unspecified Temporary File Symlink Arbitra... |
| 53380 | Apache Struts Unspecified XSS |
| 50284 | SUSE Linux yast2-backup Filename Command Injection |
| 46784 | SUSE Linux zen-remover Wrapper Script Search Path Subversion Local Privilege ... |
| 46783 | SUSE Linux zen-installer Wrapper Script Search Path Subversion Local Privileg... |
| 46782 | SUSE Linux zen-updater Wrapper Script Search Path Subversion Local Privilege ... |
| 46781 | SUSE Linux rug Wrapper Script Search Path Subversion Local Privilege Escalation |
| 46404 | SUSE Linux findutils-locate Package core clean Cron Job Unspecified Arbitrary... |
| 39580 | SuSE Linux banshee LD_LIBRARY_PATH Variable Path Subversion Local Privilege E... |
| 39579 | Liferea LD_LIBRARY_PATH Variable Path Subversion Local Privilege Escalation |
| 39578 | SuSE Linux tomboy LD_LIBRARY_PATH Variable Path Subversion Local Privilege Es... |
| 39577 | SuSE Linux blam LD_LIBRARY_PATH Variable Path Subversion Local Privilege Esca... |
| 32939 | ulogd Multiple Unspecified Overflows |
| 32721 | OpenSSH Username Password Complexity Account Enumeration |
| 28025 | SuSE YaST YaST Online Update (YOU) Signature Verification Bypass |
| 20263 | SUSE Permissions Bypass chkstat Arbitrary File Access |
| 19982 | SuSE Linux beagle LD_LIBRARY_PATH Variable Path Subversion Local Privilege Es... |
ExploitDB Exploits
| id | Description |
|---|---|
| 3303 | Portable OpenSSH <= 3.6.1p-PAM / 4.1-SUSE Timing Attack Exploit |
OpenVAS Exploits
This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 2011-10-21 | Name : Ubuntu Update for open-iscsi USN-1235-1 File : nvt/gb_ubuntu_USN_1235_1.nasl |
| 2011-02-28 | Name : Mandriva Update for tomboy MDVSA-2011:035 (tomboy) File : nvt/gb_mandriva_MDVSA_2011_035.nasl |
| 2011-01-11 | Name : SuSE Update for kernel SUSE-SA:2010:039 File : nvt/gb_suse_2010_039.nasl |
| 2009-10-19 | Name : SuSE Security Summary SUSE-SR:2009:016 File : nvt/suse_sr_2009_016.nasl |
| 2009-10-13 | Name : SLES10: Security update for yast2-backup File : nvt/sles10_yast2-backup.nasl |
| id | Description |
|---|---|
| 2009-10-13 | Name : SLES10: Security update for open-iscsi File : nvt/sles10_open-iscsi.nasl |
| 2009-10-11 | Name : SLES11: Security update for open-iscsi File : nvt/sles11_open-iscsi.nasl |
| 2009-10-10 | Name : SLES9: Security update for liby2util File : nvt/sles9p5016129.nasl |
| 2009-10-10 | Name : SLES9: Security update for yast2-backup File : nvt/sles9p5037889.nasl |
| 2009-04-09 | Name : Mandriva Update for tomboy MDVSA-2008:064 (tomboy) File : nvt/gb_mandriva_MDVSA_2008_064.nasl |
| 2009-04-06 | Name : SuSE Security Summary SUSE-SR:2009:008 File : nvt/suse_sr_2009_008.nasl |
| 2009-03-23 | Name : Ubuntu Update for tomboy vulnerability USN-560-1 File : nvt/gb_ubuntu_USN_560_1.nasl |
| 2009-02-27 | Name : Fedora Update for tomboy FEDORA-2007-3011 File : nvt/gb_fedora_2007_3011_tomboy_fc7.nasl |
| 2009-02-27 | Name : Fedora Update for tomboy FEDORA-2007-3253 File : nvt/gb_fedora_2007_3253_tomboy_fc8.nasl |
| 2009-02-27 | Name : Fedora Update for liferea FEDORA-2007-3701 File : nvt/gb_fedora_2007_3701_liferea_fc8.nasl |
| 2009-02-27 | Name : Fedora Update for liferea FEDORA-2007-3733 File : nvt/gb_fedora_2007_3733_liferea_fc7.nasl |
| 2009-02-27 | Name : Fedora Update for blam FEDORA-2007-3792 File : nvt/gb_fedora_2007_3792_blam_fc7.nasl |
| 2009-02-27 | Name : Fedora Update for blam FEDORA-2007-3798 File : nvt/gb_fedora_2007_3798_blam_fc8.nasl |
| 2009-02-27 | Name : Fedora Update for blam FEDORA-2007-3952 File : nvt/gb_fedora_2007_3952_blam_fc7.nasl |
| 2009-02-27 | Name : Fedora Update for blam FEDORA-2007-3962 File : nvt/gb_fedora_2007_3962_blam_fc8.nasl |
| 2009-02-17 | Name : Fedora Update for blam FEDORA-2008-6127 File : nvt/gb_fedora_2008_6127_blam_fc8.nasl |
| 2009-02-17 | Name : Fedora Update for blam FEDORA-2008-9667 File : nvt/gb_fedora_2008_9667_blam_fc8.nasl |
| 2009-02-17 | Name : Fedora Update for blam FEDORA-2008-6491 File : nvt/gb_fedora_2008_6491_blam_fc8.nasl |
| 2009-02-17 | Name : Fedora Update for blam FEDORA-2008-8399 File : nvt/gb_fedora_2008_8399_blam_fc8.nasl |
| 2009-02-16 | Name : Fedora Update for blam FEDORA-2008-2682 File : nvt/gb_fedora_2008_2682_blam_fc8.nasl |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2013-A-0151 | ISC BIND 9 Remote Denial of Service Vulnerability Severity : Category I - VMSKEY : V0039823 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2017-12-19 | ISC BIND 9 DNS rdata length handling remote denial of service attempt RuleID : 44879 - Type : SERVER-OTHER - Revision : 1 |
| 2014-01-10 | ISC BIND 9 DNS rdata length handling remote denial of service attempt RuleID : 27666 - Type : SERVER-OTHER - Revision : 3 |
Nessus® Vulnerability Scanner
This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 2019-01-16 | Name : The remote database server is affected by multiple vulnerabilities File : mariadb_5_5_42.nasl - Type : ACT_GATHER_INFO |
| 2017-04-21 | Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2017-0066.nasl - Type : ACT_GATHER_INFO |
| 2015-09-23 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201507-19.nasl - Type : ACT_GATHER_INFO |
| 2015-08-26 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2015-1665.nasl - Type : ACT_GATHER_INFO |
| 2015-08-25 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2015-1665.nasl - Type : ACT_GATHER_INFO |
| id | Description |
|---|---|
| 2015-08-25 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-1665.nasl - Type : ACT_GATHER_INFO |
| 2015-08-25 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20150824_mariadb_on_SL7_x.nasl - Type : ACT_GATHER_INFO |
| 2015-08-18 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20150817_mysql55_mysql_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
| 2015-08-18 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2015-1628.nasl - Type : ACT_GATHER_INFO |
| 2015-08-18 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2015-1628.nasl - Type : ACT_GATHER_INFO |
| 2015-08-17 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-1628.nasl - Type : ACT_GATHER_INFO |
| 2015-07-22 | Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2015-1273-1.nasl - Type : ACT_GATHER_INFO |
| 2015-07-20 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-3311.nasl - Type : ACT_GATHER_INFO |
| 2015-07-13 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2015-479.nasl - Type : ACT_GATHER_INFO |
| 2015-05-27 | Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2015-0946-1.nasl - Type : ACT_GATHER_INFO |
| 2015-05-13 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2015-132-01.nasl - Type : ACT_GATHER_INFO |
| 2015-05-13 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2015-132-02.nasl - Type : ACT_GATHER_INFO |
| 2015-05-06 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2015-227.nasl - Type : ACT_GATHER_INFO |
| 2015-04-22 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-2575-1.nasl - Type : ACT_GATHER_INFO |
| 2015-04-20 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-3229.nasl - Type : ACT_GATHER_INFO |
| 2015-04-15 | Name : The remote database server is affected by multiple denial of service vulnerab... File : mysql_5_6_23.nasl - Type : ACT_GATHER_INFO |
| 2015-04-15 | Name : The remote database server is affected by multiple denial of service vulnerab... File : mysql_5_6_24.nasl - Type : ACT_GATHER_INFO |
| 2014-12-26 | Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2014-0084.nasl - Type : ACT_GATHER_INFO |
| 2014-11-08 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2013-1181.nasl - Type : ACT_GATHER_INFO |
| 2014-10-21 | Name : The remote host is missing a security update for OS X Server. File : macosx_server_4_0.nasl - Type : ACT_GATHER_INFO |
