Lucene search
PRIOn knowledge basePRION:CVE-2010-2020HistoryMay 28, 2010 - 6:30 p.m.
Cross site request forgery (csrf)
2010-05-2818:30:00
PRIOn knowledge base
www.prio-n.com
4
6.8 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
0.4%
sys/nfsclient/nfs_vfsops.c in the NFS client in the kernel in FreeBSD 7.2 through 8.1-PRERELEASE, when vfs.usermount is enabled, does not validate the length of a certain fhsize parameter, which allows local users to gain privileges via a crafted mount request.
| CPE | Name | Operator | Version |
|---|---|---|---|
| freebsd | eq | 8.0 | |
| freebsd | eq | 8.1.0-prerelease | |
| freebsd | eq | 7.2 | |
| freebsd | eq | 7.2 | |
| freebsd | eq | 7.2 stable |
Related
securityvulns
securityvulns
FreeBSD NFS client privilege escalation
2010-05-28 00:00:00
FreeBSD Security Advisory FreeBSD-SA-10:06.nfsclient
2010-05-28 00:00:00
CVE-2010-2020: FreeBSD kernel NFS client local vulnerabilities
2010-05-28 00:00:00
cve
cve
CVE-2010-2020
2010-05-28 18:30:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-10:06.nfsclient
2010-05-27 00:00:00
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-10:06.nfsclient.asc)
2010-06-03 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-10:06.nfsclient.asc)
2010-06-03 00:00:00
6.8 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
0.4%
Related for PRION:CVE-2010-2020