Lucene search
K

6 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.70 views

Linux Kernel < 2.6.37-rc2 ACPI custom_method Privilege Escalation

No description provided by source. / american-sign-language.c Linux Kernel 2.6.37-rc2 ACPI custommethod Privilege Escalation Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4347 This custommethod file allows to inject...

6.9CVSS0.2AI score0.02203EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.43 views

openSUSE Security Update : kernel (openSUSE-SU-2011:0004-1)

The openSUSE 11.3 kernel was updated to fix various bugs and security issues. Following security issues have been fixed: CVE-2010-4347: A local user could inject ACPI code into the kernel via the world-writable 'customdebug' file, allowing local privilege escalation. CVE-2010-4258: A local attack...

7.8CVSS6.2AI score0.05542EPSS
Exploits50References57
Prion
Prion
added 2012/06/21 11:55 p.m.21 views

Design/Logic Flaw

drivers/acpi/debugfs.c in the Linux kernel before 3.0 allows local users to modify arbitrary kernel memory locations by leveraging root privileges to write to the /sys/kernel/debug/acpi/custommethod file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4347...

3.6CVSS6.4AI score0.02203EPSS
Exploits7References5Affected Software1
RedHat Linux
RedHat Linux
added 2011/03/10 8:1 p.m.68 views

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

Updated kernel-rt packages that fix multiple security issues and three bugs are now available for Red Hat Enterprise MRG 1.3. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

7.8CVSS6.3AI score0.02203EPSS
Exploits34References20
OpenVAS
OpenVAS
added 2011/01/11 12:0 a.m.45 views

SuSE Update for kernel SUSE-SA:2011:001

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9AI score
Exploits0References1
CVE
CVE
added 2010/12/22 8:0 p.m.103 views

CVE-2010-4347

CVE-2010-4347 affects the Linux kernel’s ACPI subsystem. The vulnerability arises in the debugfs interface (custom_method file) which, due to world-writable 0222 permissions, lets a local user place a custom ACPI method in interpreter tables via acpi_debugfs_init in drivers/acpi/debugfs.c. This c...

6.9CVSS7.2AI score0.02203EPSS
Exploits6References13Affected Software1
Rows per page
Query Builder