Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-1079
HistoryJun 21, 2012 - 11:55 p.m.

CVE-2011-1079

2012-06-2123:55:02
CWE-20
[email protected]
web.nvd.nist.gov
72
3
linux kernel
bnep_sock_ioctl
cve-2011-1079
security vulnerability
denial of service
nvd

5.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:P/I:N/A:C

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The bnep_sock_ioctl function in net/bluetooth/bnep/sock.c in the Linux kernel before 2.6.39 does not ensure that a certain device field ends with a ‘\0’ character, which allows local users to obtain potentially sensitive information from kernel stack memory, or cause a denial of service (BUG and system crash), via a BNEPCONNADD command.

Affected configurations

NVD
Node
linuxlinux_kernelRange2.6.38.8
OR
linuxlinux_kernelMatch2.6.38
OR
linuxlinux_kernelMatch2.6.38rc1
OR
linuxlinux_kernelMatch2.6.38rc2
OR
linuxlinux_kernelMatch2.6.38rc3
OR
linuxlinux_kernelMatch2.6.38rc4
OR
linuxlinux_kernelMatch2.6.38rc5
OR
linuxlinux_kernelMatch2.6.38rc6
OR
linuxlinux_kernelMatch2.6.38rc7
OR
linuxlinux_kernelMatch2.6.38rc8
OR
linuxlinux_kernelMatch2.6.38.1
OR
linuxlinux_kernelMatch2.6.38.2
OR
linuxlinux_kernelMatch2.6.38.3
OR
linuxlinux_kernelMatch2.6.38.4
OR
linuxlinux_kernelMatch2.6.38.5
OR
linuxlinux_kernelMatch2.6.38.6
OR
linuxlinux_kernelMatch2.6.38.7

Social References

More

Related

cvelist 1
nvd 1
ubuntucve 1
prion 1
veracode 1
oraclelinux 8
nessus 31
openvas 37
ubuntu 11
redhat 3
centos 1
fedora 2
suse 2
securityvulns 2
debian 2
osv 2
vmware 2
packetstorm 1
cvelist
cvelist
CVE-2011-1079
2012-06-21 23:00:00
nvd
nvd
CVE-2011-1079
2012-06-21 23:55:02
ubuntucve
ubuntucve
CVE-2011-1079
2011-07-25 00:00:00
prion
prion
Command injection
2012-06-21 23:55:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:56:08
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2019-06-06 00:00:00
Unbreakable Enterprise kernel security update
2019-06-07 00:00:00
Unbreakable Enterprise kernel security update
2019-06-04 00:00:00
nessus
nessus
Fedora 14 : kernel-2.6.35.13-91.fc14 (2011-6541)
2011-05-10 00:00:00
OracleVM 3.4 : Unbreakable / etc (OVMSA-2019-0024)
2019-06-07 00:00:00
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2019-4685)
2019-06-18 00:00:00
openvas
openvas
Ubuntu Update for linux USN-1189-1
2011-08-24 00:00:00
Ubuntu: Security Advisory (USN-1189-1)
2011-08-24 00:00:00
CentOS Update for kernel CESA-2011:0833 centos5 i386
2011-08-09 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2011-08-19 00:00:00
Linux kernel vulnerabilities
2011-06-01 00:00:00
Linux kernel vulnerabilities
2011-07-13 00:00:00
redhat
redhat
(RHSA-2011:0833) Important: kernel security and bug fix update
2011-05-31 00:00:00
(RHSA-2011:0498) Important: kernel security, bug fix, and enhancement update
2011-05-10 00:00:00
(RHSA-2011:0500) Important: kernel-rt security and bug fix update
2011-05-10 00:00:00
centos
centos
kernel security update
2011-05-31 23:49:24
fedora
fedora
[SECURITY] Fedora 14 Update: kernel-2.6.35.13-91.fc14
2011-05-09 20:58:33
[SECURITY] Fedora 13 Update: kernel-2.6.34.9-69.fc13
2011-06-21 17:22:40
suse
suse
Security update for Linux kernel (important)
2011-07-25 17:08:29
remote denial of service, potential local in kernel
2011-07-25 15:19:26
securityvulns
securityvulns
Linux kernel security vulnerabilities
2011-05-26 00:00:00
[SECURITY] [DSA 2240-1] linux-2.6 security update
2011-05-26 00:00:00
debian
debian
[SECURITY] [DSA 2240-1] linux-2.6 security update
2011-05-25 05:22:29
[SECURITY] [DSA 2264-1] linux-2.6 security update
2011-06-19 01:11:37
osv
osv
linux-2.6 - several issues
2011-05-24 00:00:00
linux-2.6 - several issues
2011-06-18 00:00:00
vmware
vmware
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00
packetstorm
packetstorm
Ubuntu Security Notice USN-1202-1
2011-09-14 00:00:00

5.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:P/I:N/A:C

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVE-2011-1079
cvelist1nvd1ubuntucve1prion1veracode1oraclelinux8nessus31openvas37ubuntu11redhat3centos1fedora2suse2securityvulns2debian2osv2vmware2packetstorm1