Lucene search

[email protected]CVE-2010-2070

HistoryJun 16, 2010 - 8:30 p.m.

CVE-2010-2070

2010-06-1620:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

xen

linux kernel

cve-2010-2070

ia-64

denial of service

exploitation

6.9 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

arch/ia64/xen/faults.c in Xen 3.4 and 4.0 in Linux kernel 2.6.18, and possibly other kernel versions, when running on IA-64 architectures, allows local users to cause a denial of service and “turn on BE by modifying the user mask of the PSR,” as demonstrated via exploitation of CVE-2006-0742.

CPENameOperatorVersion
xensource:xenxensource xeneq4.0.0
xensource:xenxensource xeneq3.4.0

CPE	Name	Operator	Version
xensource:xen	xensource xen	eq	4.0.0
xensource:xen	xensource xen	eq	3.4.0

References

osvdb.org/65541

secunia.com/advisories/43315

www.openwall.com/lists/oss-security/2010/06/10/2

www.redhat.com/support/errata/RHSA-2010-0610.html

www.securityfocus.com/archive/1/516397/100/0/threaded

www.securityfocus.com/bid/40776

www.vmware.com/security/advisories/VMSA-2011-0003.html

xenbits.xensource.com/xen-4.0-testing.hg?rev/42caadb14edb

bugzilla.redhat.com/show_bug.cgi?id=586415

exchange.xforce.ibmcloud.com/vulnerabilities/59373

6.9 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2010-2070

prion2 ubuntucve2 veracode1 openvas11 nessus15 cve1 redhat4 oraclelinux2 centos3 ubuntu1 debian2 osv2 suse1