Lucene search

[email protected]NVD:CVE-2010-3904

HistoryDec 06, 2010 - 8:13 p.m.

CVE-2010-3904

2010-12-0620:13:00

CWE-1284

[email protected]

web.nvd.nist.gov

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

43.1%

JSON

The rds_page_copy_user function in net/rds/page.c in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel before 2.6.36 does not properly validate addresses obtained from user space, which allows local users to gain privileges via crafted use of the sendmsg and recvmsg system calls.

Affected configurations

NVD

Node

linuxlinux_kernelRange<2.6.36

Node

opensuseopensuseMatch11.2

opensuseopensuseMatch11.3

suselinux_enterprise_desktopMatch11sp1

suselinux_enterprise_real_time_extensionMatch11sp1

suselinux_enterprise_serverMatch11sp1

Node

canonicalubuntu_linuxMatch6.06

canonicalubuntu_linuxMatch8.04-

canonicalubuntu_linuxMatch9.04

canonicalubuntu_linuxMatch9.10

canonicalubuntu_linuxMatch10.04-

canonicalubuntu_linuxMatch10.10

Node

redhatenterprise_linuxMatch5.0

redhatenterprise_linuxMatch6.0

Node

vmwareesxiMatch3.5

vmwareesxiMatch4.0

vmwareesxiMatch4.1

vmwareesxiMatch5.0

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=799c10559d60f159ab2232203f222f18fa3c4a5f

lists.opensuse.org/opensuse-security-announce/2010-10/msg00008.html

lists.opensuse.org/opensuse-security-announce/2010-11/msg00004.html

lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html

packetstormsecurity.com/files/155751/vReliable-Datagram-Sockets-RDS-rds_page_copy_user-Privilege-Escalation.html

secunia.com/advisories/46397

securitytracker.com/id?1024613

www.kb.cert.org/vuls/id/362983

www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36

www.redhat.com/support/errata/RHSA-2010-0792.html

www.redhat.com/support/errata/RHSA-2010-0842.html

www.securityfocus.com/archive/1/520102/100/0/threaded

www.ubuntu.com/usn/USN-1000-1

www.vmware.com/security/advisories/VMSA-2011-0012.html

www.vsecurity.com/download/tools/linux-rds-exploit.c

www.vsecurity.com/resources/advisory/20101019-1/

www.vupen.com/english/advisories/2011/0298

bugzilla.redhat.com/show_bug.cgi?id=642896

www.exploit-db.com/exploits/44677/

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

43.1%

JSON

Related for NVD:CVE-2010-3904