Lucene search
PRIOn knowledge basePRION:CVE-2011-4190HistoryJun 08, 2018 - 5:29 p.m.
Design/Logic Flaw
2018-06-0817:29:00
PRIOn knowledge base
www.prio-n.com
3
The kdump implementation is missing the host key verification in the kdump and mkdumprd OpenSSH integration of kdump prior to version 2012-01-20. This is similar to CVE-2011-3588, but different in that the kdump implementation is specific to SUSE. A remote malicious kdump server could use this flaw to impersonate the correct kdump server to obtain security sensitive information (kdump core files).
Related
cve
cve
CVE-2011-4190
2018-06-08 17:29:00
CVE-2011-3588
2014-02-15 14:57:07
cvelist
cvelist
CVE-2011-4190 Missing verification of host key for kdump server
2011-12-13 00:00:00
CVE-2011-3588
2014-02-15 11:00:00
nvd
nvd
CVE-2011-4190
2018-06-08 17:29:00
CVE-2011-3588
2014-02-15 14:57:07
veracode
veracode
Information Disclosure
2020-04-10 01:09:02
debiancve
debiancve
CVE-2011-3588
2014-02-15 14:57:07
ubuntucve
ubuntucve
CVE-2011-3588
2014-02-15 00:00:00
prion
prion
Code injection
2014-02-15 14:57:00
seebug
seebug
Linux系统kdump和mkdumprd工具信息泄露漏洞
2011-12-08 00:00:00
nessus
nessus
Oracle Linux 6 : kexec-tools (ELSA-2011-1532)
2023-09-07 00:00:00
Scientific Linux Security Update : kexec-tools on SL6.x i386/x86_64
2012-08-01 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2012-0152)
2015-10-06 00:00:00
RedHat Update for kexec-tools RHSA-2012:0152-03
2012-02-21 00:00:00
Oracle: Security Advisory (ELSA-2011-1532)
2015-10-06 00:00:00
oraclelinux
oraclelinux
kexec-tools security, bug fix, and enhancement update
2012-03-01 00:00:00
kexec-tools security, bug fix, and enhancement update
2011-12-14 00:00:00
redhat
redhat