Lucene search

[email protected]CVE-2010-1592

HistoryApr 28, 2010 - 11:30 p.m.

CVE-2010-1592

2010-04-2823:30:00

CWE-20

[email protected]

web.nvd.nist.gov

In Wild

cve-2010-1592

sandra device driver

sisoftware sandra

local users

privileges

denial of service

system crash

model-specific registers

7.9 High

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

sandra.sys 15.18.1.1 and earlier in the Sandra Device Driver in SiSoftware Sandra 16.10.2010.1 and earlier allows local users to gain privileges or cause a denial of service (system crash) via unspecified vectors involving “Model-Specific Registers.”

CPENameOperatorVersion
sisoftware:sandrasisoftware sandrale16.10.2010.1

CPE	Name	Operator	Version
sisoftware:sandra	sisoftware sandra	le	16.10.2010.1

References

osvdb.org/61947

secunia.com/advisories/38212

www.ntinternals.org/ntiadv0808/ntiadv0808.html

www.vupen.com/english/advisories/2010/0223

7.9 High

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2010-1592

prion1 attackerkb1 securelist1 mssecure2 mmpc1 myhack581 rapid7blog1