Showing 1 - 7 of 7

CVE-2010-3904

Status Candidate

Overview

The rds_page_copy_user function in net/rds/page.c in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel before 2.6.36 does not properly validate addresses obtained from user space, which allows local users to gain privileges via crafted use of the sendmsg and recvmsg system calls.

Related Files

vReliable Datagram Sockets (RDS) rds_page_copy_user Privilege Escalation: Posted Dec 23, 2019; Authored by Dan Rosenberg, Brendan Coles | Site metasploit.com; This Metasploit module exploits a vulnerability in the rds_page_copy_user function in net/rds/page.c (RDS) in Linux kernel versions 2.6.30 to 2.6.36-rc8 to execute code as root (CVE-2010-3904). This module has been tested successfully on Fedora 13 (i686) kernel version 2.6.33.3-85.fc13.i686.PAE and Ubuntu 10.04 (x86_64) with kernel version 2.6.32-21-generic.; tags | exploit, kernel, root; systems | linux, fedora, ubuntu; advisories | CVE-2010-3904; MD5 | ae11a67b34fba9d465c0f0b7d84392d0; Download | Favorite | View

Reliable Datagram Sockets (RDS) Privilege Escalation: Posted May 19, 2018; Authored by Dan Rosenberg, Brendan Coles | Site metasploit.com; This Metasploit module exploits a vulnerability in the rds_page_copy_user function in net/rds/page.c (RDS) in Linux kernel versions 2.6.30 to 2.6.36-rc8 to execute code as root (CVE-2010-3904). This Metasploit module has been tested successfully on Fedora 13 (i686) with kernel version 2.6.33.3-85.fc13.i686.PAE and Ubuntu 10.04 (x86_64) with kernel version 2.6.32-21-generic.; tags | exploit, kernel, root; systems | linux, fedora, ubuntu; advisories | CVE-2010-3904; MD5 | ca0aaa65162c3d2e20a520b81415f4ae; Download | Favorite | View

Symantec Messaging Gateway Backdoor / Privilege Escalation: Posted Nov 30, 2012; Authored by Ben Williams | Site nccgroup.com; Symantec Messaging Gateway version 9.5.3-3 suffers from backdoor account and privilege escalation vulnerabilities.; tags | advisory, vulnerability; advisories | CVE-2007-4573, CVE-2008-0009, CVE-2008-4210, CVE-2009-1046, CVE-2009-1337, CVE-2009-2692, CVE-2009-3547, CVE-2010-1146, CVE-2010-2959, CVE-2010-3848, CVE-2010-3849, CVE-2010-3850, CVE-2010-3904, CVE-2010-4073, CVE-2010-4258, CVE-2010-4347; MD5 | e1a9b2ba54c980d0ecd312d2a5ed1672; Download | Favorite | View

VMware Security Advisory 2011-0012: Posted Oct 14, 2011; Authored by VMware | Site vmware.com; VMware Security Advisory 2011-0012 - VMware ESXi and ESX updates to third party libraries and ESX Service Console address several security issues.; tags | advisory; advisories | CVE-2010-0296, CVE-2010-1083, CVE-2010-1323, CVE-2010-2492, CVE-2010-2798, CVE-2010-2938, CVE-2010-2942, CVE-2010-2943, CVE-2010-3015, CVE-2010-3066, CVE-2010-3067, CVE-2010-3078, CVE-2010-3086, CVE-2010-3296, CVE-2010-3432, CVE-2010-3442, CVE-2010-3477, CVE-2010-3699, CVE-2010-3858, CVE-2010-3859, CVE-2010-3865, CVE-2010-3876, CVE-2010-3877, CVE-2010-3880, CVE-2010-3904, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075; MD5 | 09895b515d192ac17d0b7edd6177d76b; Download | Favorite | View

Ubuntu Security Notice USN-1119-1: Posted Apr 20, 2011; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 1119-1 - Multiple security flaws have been fixed in the OMAP4 port of the Linux kernel.; tags | advisory, kernel; systems | linux, ubuntu; advisories | CVE-2010-3849, CVE-2010-3850, CVE-2010-2954, CVE-2010-2955, CVE-2010-2960, CVE-2010-2962, CVE-2010-2963, CVE-2010-3079, CVE-2010-3080, CVE-2010-3081, CVE-2010-3437, CVE-2010-3705, CVE-2010-3848, CVE-2010-3849, CVE-2010-3850, CVE-2010-3861, CVE-2010-3865, CVE-2010-3873, CVE-2010-3875, CVE-2010-3876, CVE-2010-3877, CVE-2010-3904, CVE-2010-4072, CVE-2010-4079, CVE-2010-4158, CVE-2010-4164, CVE-2010-4165, CVE-2010-4249; MD5 | c166b2a4edaba2cfee36fd0164fbf8a9; Download | Favorite | View

Linux RDS Protocol Local Privilege Escalation: Posted Oct 19, 2010; Authored by Dan Rosenberg | Site vsecurity.com; On October 13th, VSR identified a vulnerability in the RDS protocol, as implemented in the Linux kernel. Because kernel functions responsible for copying data between kernel and user space failed to verify that a user-provided address actually resided in the user segment, a local attacker could issue specially crafted socket function calls to write arbitrary values into kernel memory. By leveraging this capability, it is possible for unprivileged users to escalate privileges to root.; tags | advisory, arbitrary, kernel, local, root, protocol; systems | linux; advisories | CVE-2010-3904; MD5 | 0e9e2bb825f575a3913d96c0801df0b5; Download | Favorite | View

Linux Kernel 2.6.36-rc8 RDS Privilege Escalation: Posted Oct 19, 2010; Authored by Dan Rosenberg | Site vsecurity.com; Linux kernel versions 2.6.36-rc8 and below RDS privilege escalation exploit.; tags | exploit, kernel; systems | linux; advisories | CVE-2010-3904; MD5 | 54ff3c68fb1a6ff5120c84c765210789; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 160 files
Ubuntu 66 files
Gentoo 13 files
LiquidWorm 12 files
Google Security Research 10 files
George Tsimpidas 5 files
Alexei Kojenov 5 files
Akiner Kisa 4 files
s1l3nt78 4 files
Glazvunov 4 files

File Archives

Systems

AIX (418)
Apple (1,742)
BSD (368)
Cisco (1,898)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (3,957)
HPUX (872)
iOS (274)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (38,649)
Mac OS X (669)
Mandriva (3,105)
NetBSD (255)
OpenBSD (472)
RedHat (9,188)
Slackware (941)
Solaris (1,593)
SUSE (1,444)
Ubuntu (6,938)
UNIX (8,760)
UnixWare (179)
Windows (5,675)
Other

CVE-2010-3904

Overview

Related Files

File Archive:

October 2020

Top Authors In Last 30 Days

File Tags

File Archives

Systems