Lucene search

MicrofocusCVE-2011-4190

HistoryJun 08, 2018 - 5:29 p.m.

CVE-2011-4190

2018-06-0817:29:00

CWE-306

CWE-310

microfocus

web.nvd.nist.gov

cve-2011-4190

kdump

host key verification

openssh

security sensitive information

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

4.9

Confidence

High

EPSS

0.001

Percentile

25.1%

JSON

The kdump implementation is missing the host key verification in the kdump and mkdumprd OpenSSH integration of kdump prior to version 2012-01-20. This is similar to CVE-2011-3588, but different in that the kdump implementation is specific to SUSE. A remote malicious kdump server could use this flaw to impersonate the correct kdump server to obtain security sensitive information (kdump core files).

Affected configurations

Nvd

Node

susesuse_linux_enterprise_desktopMatch11sp1

susesuse_linux_enterprise_serverMatch11sp1

susesuse_linux_enterprise_serverMatch11sp1sap_aio

susesuse_linux_enterprise_serverMatch11.0sp1ltss

VendorProductVersionCPE
susesuse_linux_enterprise_desktop11cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp1:*:*:*:*:*:*
susesuse_linux_enterprise_server11cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp1:*:*:*:*:*:*
susesuse_linux_enterprise_server11cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp1:*:*:*:sap_aio:*:*
susesuse_linux_enterprise_server11.0cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp1:*:*:ltss:*:*:*

Vendor	Product	Version	CPE
suse	suse_linux_enterprise_desktop	11	cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp1::::::
suse	suse_linux_enterprise_server	11	cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp1::::::
suse	suse_linux_enterprise_server	11	cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp1::::sap_aio::*
suse	suse_linux_enterprise_server	11.0	cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp1:::ltss:::*

CNA Affected

[
  {
    "product": "kdump",
    "vendor": "SUSE",
    "versions": [
      {
        "lessThan": "2012-01-20",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]