Lucene search

K

AttackerKBAKB:ECF9F192-6576-4544-9B08-280FF2185795

HistoryDec 06, 2010 - 12:00 a.m.

CVE-2010-3904

2010-12-0600:00:00

attackerkb.com

11

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

43.1%

The rds_page_copy_user function in net/rds/page.c in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel before 2.6.36 does not properly validate addresses obtained from user space, which allows local users to gain privileges via crafted use of the sendmsg and recvmsg system calls.

Recent assessments:

Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0

References

git.kernel.org?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=799c10559d60f159ab2232203f222f18fa3c4a5f

lists.opensuse.org/opensuse-security-announce/2010-10/msg00008.html

lists.opensuse.org/opensuse-security-announce/2010-11/msg00004.html

lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html

packetstormsecurity.com/files/155751/vReliable-Datagram-Sockets-RDS-rds_page_copy_user-Privilege-Escalation.html

secunia.com/advisories/46397

securitytracker.com/id?1024613

www.kb.cert.org/vuls/id/362983

www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36

www.redhat.com/support/errata/RHSA-2010-0792.html

www.redhat.com/support/errata/RHSA-2010-0842.html

www.securityfocus.com/archive/1/520102/100/0/threaded

www.ubuntu.com/usn/USN-1000-1

www.vmware.com/security/advisories/VMSA-2011-0012.html

www.vsecurity.com/download/tools/linux-rds-exploit.c

www.vsecurity.com/resources/advisory/20101019-1

www.vupen.com/english/advisories/2011/0298

bugzilla.redhat.com/show_bug.cgi?id=642896

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3904

www.exploit-db.com/exploits/44677

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

43.1%

Related for AKB:ECF9F192-6576-4544-9B08-280FF2185795