Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-3188
HistoryMay 24, 2012 - 11:55 p.m.

CVE-2011-3188

2012-05-2423:55:00
NVD-CWE-Other
[email protected]
web.nvd.nist.gov
866
linux kernel
cve-2011-3188
networking
hijack
session
denial of service
md4 algorithm
ipv4
ipv6
nvd

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

8.6 High

AI Score

Confidence

High

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.016 Low

EPSS

Percentile

87.1%

JSON

The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service (disrupted networking) or hijack network sessions by predicting these values and sending crafted packets.

Related

nessus 34
prion 1
ibm 5
veracode 1
f5 2
ubuntucve 1
redhat 5
securityvulns 4
amazon 2
ubuntu 12
openvas 49
suse 3
oraclelinux 4
centos 1
debian 3
osv 2
fedora 4
vmware 2
nessus
nessus
Juniper NSM Linux Kernel TCP Sequence Number Generation Issue (PSN-2012-08-688)
2013-09-13 00:00:00
Linux Kernel TCP Sequence Number Generation Security Weakness
2011-09-23 00:00:00
F5 Networks BIG-IP : Linux kernel TCP ISN vulnerability (K15301)
2014-10-10 00:00:00
prion
prion
Design/Logic Flaw
2012-05-24 23:55:00
ibm
ibm
Security Bulletin: Potential DOS due to weak IPv4 and IPv6 sequence numbers in IBM Storwize V7000 Unified system (CVE-2011-3188)
2018-06-18 00:07:45
Security Bulletin: Flex System Manager (FSM) Denial of Service (CVE-2011-3188)
2019-01-30 08:20:01
Security Bulletin: Potential DOS due to weak IPv4 and IPv6 sequence numbers in SAN Volume Controller and Storwize Family (CVE-2011-3188)
2022-08-20 00:54:31
veracode
veracode
Man-in-the-Middle (MitM)
2020-04-10 01:07:46
f5
f5
K15301 : Linux kernel TCP ISN vulnerability CVE-2011-3188
2014-07-25 00:00:00
SOL15301 - Linux kernel TCP ISN vulnerability CVE-2011-3188
2014-06-02 00:00:00
ubuntucve
ubuntucve
CVE-2011-3188
2011-08-25 00:00:00
redhat
redhat
(RHSA-2011:1419) Moderate: kernel security and bug fix update
2011-11-01 00:00:00
(RHSA-2011:1465) Important: kernel security and bug fix update
2011-11-22 00:00:00
(RHSA-2012:0010) Important: kernel-rt security and bug fix update
2012-01-10 00:00:00
securityvulns
securityvulns
Linux kernel security vulnerabilities
2011-09-13 00:00:00
[SECURITY] [DSA 2303-2] New linux-2.6 packages fix regression
2011-09-13 00:00:00
HP Rapid Deployment Pack / HP Insight Control Server Deployment multiple security vulnerabilities
2014-03-27 00:00:00
amazon
amazon
Medium: kernel
2011-10-31 18:26:00
Medium: kernel
2011-12-02 22:23:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2011-10-20 00:00:00
Linux kernel vulnerabilities
2011-10-25 00:00:00
Linux kernel (OMAP4) vulnerabilities
2011-10-12 00:00:00
openvas
openvas
Ubuntu Update for linux USN-1236-1
2011-10-21 00:00:00
Ubuntu: Security Advisory (USN-1236-1)
2011-10-21 00:00:00
Amazon Linux: Security Advisory (ALAS-2011-16)
2015-09-08 00:00:00
suse
suse
Security update for Linux kernel (important)
2011-12-14 08:08:27
Security update for Linux kernel (important)
2011-12-13 19:08:30
remote denial of service in kernel
2011-12-13 17:34:50
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2011-11-25 00:00:00
kernel security and bug fix update
2011-11-22 00:00:00
kernel security, bug fix, and enhancement update
2011-10-21 00:00:00
centos
centos
kernel security update
2011-10-21 00:31:03
debian
debian
[SECURITY] [DSA 2310-1] linux-2.6 security update
2011-09-22 22:48:48
[SECURITY] [DSA 2303-1] linux-2.6 security update
2011-09-08 21:31:02
[SECURITY] [DSA 2303-2] New linux-2.6 packages fix regression
2011-09-11 02:06:57
osv
osv
linux-2.6 - several issues
2011-09-22 00:00:00
linux-2.6 - several issues
2011-09-10 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: kernel-2.6.35.14-97.fc14
2011-10-08 17:59:55
[SECURITY] Fedora 14 Update: kernel-2.6.35.14-100.fc14
2011-10-30 00:31:24
[SECURITY] Fedora 14 Update: kernel-2.6.35.14-103.fc14
2011-11-04 20:29:13
vmware
vmware
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

8.6 High

AI Score

Confidence

High

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.016 Low

EPSS

Percentile

87.1%

JSON
Related for CVE-2011-3188
nessus34prion1ibm5veracode1f52ubuntucve1redhat5securityvulns4amazon2ubuntu12openvas49suse3oraclelinux4centos1debian3osv2fedora4vmware2