[email protected]CVE-2010-2542

HistoryAug 11, 2010 - 6:47 p.m.

CVE-2010-2542

2010-08-1118:47:00

CWE-787

[email protected]

web.nvd.nist.gov

cve-2010-2542

buffer overflow

git

privilege escalation

security

nvd

6.5 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

71.3%

JSON

Stack-based buffer overflow in the is_git_directory function in setup.c in Git before 1.7.2.1 allows local users to gain privileges via a long gitdir: field in a .git file in a working copy.

CPENameOperatorVersion
git-scm:gitgit-scm gitlt1.7.2.1

CPE	Name	Operator	Version
git-scm:git	git-scm git	lt	1.7.2.1

References

git.kernel.org/?p=git/git.git%3Ba=commit%3Bh=3c9d0414ed2db0167e6c828b547be8fc9f88fccc

lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html

secunia.com/advisories/43457

www.kernel.org/pub/software/scm/git/docs/RelNotes-1.7.2.1.txt

www.openwall.com/lists/oss-security/2010/07/22/1

www.openwall.com/lists/oss-security/2010/07/22/4

www.securityfocus.com/bid/41891

www.vupen.com/english/advisories/2011/0464

bugzilla.redhat.com/show_bug.cgi?id=618108

6.5 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

71.3%

JSON

Related for CVE-2010-2542

openvas14 fedora4 prion1 nessus9 debian4 osv1 gentoo1 cbl_mariner1 ubuntucve1 cvelist1 freebsd1