Lucene search
RedhatCVELIST:CVE-2011-3588HistoryFeb 15, 2014 - 11:00 a.m.
CVE-2011-3588
2014-02-1511:00:00
redhat
www.cve.org
4
The SSH configuration in the Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, disables the StrictHostKeyChecking option, which allows man-in-the-middle attackers to spoof kdump servers, and obtain sensitive core information, by using an arbitrary SSH key.
Related
debiancve
debiancve
CVE-2011-3588
2014-02-15 14:57:07
veracode
veracode
Information Disclosure
2020-04-10 01:09:02
prion
prion
Code injection
2014-02-15 14:57:00
Design/Logic Flaw
2018-06-08 17:29:00
nvd
nvd
CVE-2011-3588
2014-02-15 14:57:07
CVE-2011-4190
2018-06-08 17:29:00
ubuntucve
ubuntucve
CVE-2011-3588
2014-02-15 00:00:00
cve
cve
CVE-2011-3588
2014-02-15 14:57:07
CVE-2011-4190
2018-06-08 17:29:00
seebug
seebug
Linux系统kdump和mkdumprd工具信息泄露漏洞
2011-12-08 00:00:00
cvelist
cvelist
CVE-2011-4190 Missing verification of host key for kdump server
2018-06-08 17:00:00
nessus
nessus
RHEL 5 : kexec-tools (RHSA-2012:0152)
2012-02-21 00:00:00
RHEL 6 : kexec-tools (RHSA-2011:1532)
2011-12-06 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2011-1532)
2015-10-06 00:00:00
RedHat Update for kexec-tools RHSA-2012:0152-03
2012-02-21 00:00:00
Oracle: Security Advisory (ELSA-2012-0152)
2015-10-06 00:00:00
redhat
redhat
oraclelinux
oraclelinux
kexec-tools security, bug fix, and enhancement update
2012-03-01 00:00:00
kexec-tools security, bug fix, and enhancement update
2011-12-14 00:00:00