Vulnerability feed

Vulnerability

CVE-2010-3904

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2010-3904
Description:: The rds_page_copy_user function in net/rds/page.c in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel before 2.6.36 does not properly validate addresses obtained from user space, which allows local users to gain privileges via crafted use of the sendmsg and recvmsg system calls.
Last updated date:: 08/14/2020

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 05/12/2023
Reference url to background: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:: exploit
Confidence:: HIGH
Date of publishing:: 08/14/2020
Reference url to background: http://packetstormsecurity.com/files/155751/vReliable-Datagram-Sockets-RDS-rds_page_copy_user-Privilege-Escalation.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 08/14/2020
Reference url to background: https://www.exploit-db.com/exploits/44677/

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/17/2021
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/local/rds_rds_page_copy_user_priv_esc.rb

Vulnerability Feed Contributors About Blog

@inTheWild

©2024 |