Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2010-4078
HistoryNov 29, 2010 - 4:00 p.m.

CVE-2010-4078

2010-11-2916:00:03
CWE-909
[email protected]
web.nvd.nist.gov
6

CVSS2

1.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

AI Score

4.9

Confidence

High

EPSS

0

Percentile

10.1%

JSON

The sisfb_ioctl function in drivers/video/sis/sis_main.c in the Linux kernel before 2.6.36-rc6 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FBIOGET_VBLANK ioctl call.

Affected configurations

Nvd
Node
linuxlinux_kernelRange<2.6.36
OR
linuxlinux_kernelMatch2.6.36-
OR
linuxlinux_kernelMatch2.6.36rc1
OR
linuxlinux_kernelMatch2.6.36rc2
OR
linuxlinux_kernelMatch2.6.36rc3
OR
linuxlinux_kernelMatch2.6.36rc4
OR
linuxlinux_kernelMatch2.6.36rc5
Node
opensuseopensuseMatch11.2
OR
opensuseopensuseMatch11.3
OR
suselinux_enterprise_desktopMatch10sp3
OR
suselinux_enterprise_real_time_extensionMatch11sp1
OR
suselinux_enterprise_serverMatch10sp3
OR
suselinux_enterprise_software_development_kitMatch10sp3
Node
debiandebian_linuxMatch5.0
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:-:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:rc1:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:rc2:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:rc3:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:rc4:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:rc5:*:*:*:*:*:*
opensuseopensuse11.2cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
opensuseopensuse11.3cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*
suselinux_enterprise_desktop10cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3:*:*:*:*:*:*
Rows per page:
1-10 of 141

References

Related

cve 1
ubuntucve 1
prion 1
cvelist 1
openvas 14
nessus 9
ubuntu 5
suse 4
debian 1
securityvulns 2
osv 1
cve
cve
CVE-2010-4078
2010-11-29 16:00:03
ubuntucve
ubuntucve
CVE-2010-4078
2010-11-29 00:00:00
prion
prion
Session fixation
2010-11-29 16:00:00
cvelist
cvelist
CVE-2010-4078
2010-11-29 15:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1071-1)
2011-02-28 00:00:00
Ubuntu Update for linux-source-2.6.15 vulnerabilities USN-1071-1
2011-02-28 00:00:00
SuSE Update for kernel SUSE-SA:2011:002
2011-01-11 00:00:00
nessus
nessus
Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-1071-1)
2011-03-01 00:00:00
openSUSE Security Update : kernel (openSUSE-SU-2010:1047-1)
2011-05-05 00:00:00
SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7257)
2010-12-14 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2011-02-25 00:00:00
Linux kernel vulnerabilities
2011-02-25 00:00:00
Linux kernel vulnerabilities
2011-02-25 00:00:00
suse
suse
remote denial of service in kernel
2010-12-14 13:42:46
potential local privilege escalation in kernel
2011-01-03 15:33:25
local privilege escalation, remote denial of in kernel
2011-01-03 15:33:10
debian
debian
[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues
2010-11-27 04:49:43
securityvulns
securityvulns
[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues
2010-12-01 00:00:00
Linux kernel multiple security vulnerabilities
2010-12-09 00:00:00
osv
osv
linux-2.6 - several issues
2010-11-26 00:00:00

CVSS2

1.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

AI Score

4.9

Confidence

High

EPSS

0

Percentile

10.1%

JSON
Related for NVD:CVE-2010-4078
cve1ubuntucve1prion1cvelist1openvas14nessus9ubuntu5suse4debian1securityvulns2osv1