Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
metasploitDan Rosenberg, bcoles <[email protected]>MSF:EXPLOIT-LINUX-LOCAL-RDS_PRIV_ESC-
HistoryMay 03, 2018 - 12:51 p.m.

Reliable Datagram Sockets (RDS) Privilege Escalation

2018-05-0312:51:21
Dan Rosenberg, bcoles <[email protected]>
www.rapid7.com
33

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

43.1%

JSON

This module exploits a vulnerability in the rds_page_copy_user function in net/rds/page.c (RDS) in Linux kernel versions 2.6.30 to 2.6.36-rc8 to execute code as root (CVE-2010-3904). This module has been tested successfully on Fedora 13 (i686) with kernel version 2.6.33.3-85.fc13.i686.PAE and Ubuntu 10.04 (x86_64) with kernel version 2.6.32-21-generic.

Related

seebug 3
zdt 3
packetstorm 2
ubuntucve 1
cvelist 1
metasploit 1
redhat 2
openvas 50
centos 1
securityvulns 3
cve 1
nessus 19
oraclelinux 6
exploitpack 1
veracode 1
cisa_kev 1
attackerkb 1
nvd 1
cert 1
canvas 1
altlinux 1
prion 1
exploitdb 2
suse 3
fedora 14
thn 1
ubuntu 6
vmware 2
seebug
seebug
Linux RDS Protocol Local Privilege Escalation
2010-10-26 00:00:00
Linux Kernel RDS协议本地权限提升漏洞
2010-10-26 00:00:00
Linux Kernel <= 2.6.36-rc8 - RDS Protocol Local Privilege Escalation
2014-07-01 00:00:00
zdt
zdt
Reliable Datagram Sockets (RDS) Privilege Escalation Exploit
2018-05-19 00:00:00
Linux 2.6.30 < 2.6.36-rc8 - Reliable Datagram Sockets (RDS) Privilege Escalation Exploit
2018-05-21 00:00:00
vReliable Datagram Sockets (RDS) rds_page_copy_user Privilege Escalation Exploit
2019-12-24 00:00:00
packetstorm
packetstorm
vReliable Datagram Sockets (RDS) rds_page_copy_user Privilege Escalation
2019-12-23 00:00:00
Reliable Datagram Sockets (RDS) Privilege Escalation
2018-05-19 00:00:00
ubuntucve
ubuntucve
CVE-2010-3904
2010-10-19 00:00:00
cvelist
cvelist
CVE-2010-3904
2010-12-06 20:00:00
metasploit
metasploit
Reliable Datagram Sockets (RDS) rds_page_copy_user Privilege Escalation
2019-12-18 20:05:19
redhat
redhat
(RHSA-2010:0792) Important: kernel security update
2010-10-25 00:00:00
(RHSA-2010:0842) Important: kernel security and bug fix update
2010-11-10 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2010-2010)
2015-10-06 00:00:00
RedHat Update for kernel RHSA-2010:0792-01
2010-11-04 00:00:00
CentOS Update for kernel CESA-2010:0792 centos5 i386
2011-08-09 00:00:00
centos
centos
kernel security update
2010-10-26 06:38:54
securityvulns
securityvulns
Linux kernel RDS protocol privilege escalation
2010-10-24 00:00:00
VSR Advisories: Linux RDS Protocol Local Privilege Escalation
2010-10-24 00:00:00
NGS000267 Technical Advisory: Symantec Messaging Gateway SSH with backdoor user account plus privilege escalation to root due to very old Kernel
2012-12-02 00:00:00
cve
cve
CVE-2010-3904
2010-12-06 20:13:00
nessus
nessus
CentOS 5 : kernel (CESA-2010:0792)
2010-11-24 00:00:00
Oracle Linux 5 : kernel (ELSA-2010-0792)
2013-07-12 00:00:00
Scientific Linux Security Update : kernel on SL5.x i386/x86_64
2012-08-01 00:00:00
oraclelinux
oraclelinux
kernel security update
2010-10-27 00:00:00
kernel security update
2010-10-22 00:00:00
Oracle Linux 5 Unbreakable Enterprise kernel security fix update
2010-10-22 00:00:00
exploitpack
exploitpack
Linux Kernel 2.6.36-rc8 - RDS Protocol Local Privilege Escalation
2010-10-19 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:50:15
cisa_kev
cisa_kev
Linux Kernel Improper Input Validation Vulnerability
2023-05-12 00:00:00
attackerkb
attackerkb
CVE-2010-3904
2010-12-06 00:00:00
nvd
nvd
CVE-2010-3904
2010-12-06 20:13:00
cert
cert
Linux kernel RDS protocol vulnerability
2010-10-25 00:00:00
canvas
canvas
Immunity Canvas: LINUX_RDS
2010-12-06 20:13:00
altlinux
altlinux
Security fix for the ALT Linux 6 package kernel-image-hpc-skif version 2.6.32-alt24
2010-10-20 00:00:00
prion
prion
Design/Logic Flaw
2010-12-06 20:13:00
exploitdb
exploitdb
Linux 2.6.30 &lt; 2.6.36-rc8 - Reliable Datagram Sockets (RDS) Privilege Escalation (Metasploit)
2018-05-21 00:00:00
Linux Kernel 2.6.36-rc8 - &#039;RDS Protocol&#039; Local Privilege Escalation
2010-10-19 00:00:00
suse
suse
local privilege escalation in kernel
2010-10-28 16:14:32
local privilege escalation in kernel
2010-11-11 15:47:32
remote denial of service, local privilege in kernel-rt
2011-02-07 11:58:56
fedora
fedora
[SECURITY] Fedora 14 Update: kernel-2.6.35.6-48.fc14
2010-10-28 06:10:03
[SECURITY] Fedora 14 Update: kernel-2.6.35.9-64.fc14
2010-12-05 00:42:46
[SECURITY] Fedora 14 Update: kernel-2.6.35.13-92.fc14
2011-06-11 04:22:38
thn
thn
Warning: Samsung Devices Under Attack! New Security Flaw Exposed
2023-05-20 04:15:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-10-19 00:00:00
Linux kernel (OMAP4) vulnerabilities
2011-04-20 00:00:00
Linux kernel vulnerabilities
2011-02-28 00:00:00
vmware
vmware
VMware ESX third party updates for Service Console packages glibc and dhcp
2011-10-12 00:00:00
VMware ESXi and ESX updates to third party libraries and ESX Service Console
2011-10-12 00:00:00

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

43.1%

JSON
Related for MSF:EXPLOIT-LINUX-LOCAL-RDS_PRIV_ESC-
seebug3zdt3packetstorm2ubuntucve1cvelist1metasploit1redhat2openvas50centos1securityvulns3cve1nessus19oraclelinux6exploitpack1veracode1cisa_kev1attackerkb1nvd1cert1canvas1altlinux1prion1exploitdb2suse3fedora14thn1ubuntu6vmware2