Showing 1 - 7 of 7

CVE-2010-3904

Status Candidate

Overview

The rds_page_copy_user function in net/rds/page.c in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel before 2.6.36 does not properly validate addresses obtained from user space, which allows local users to gain privileges via crafted use of the sendmsg and recvmsg system calls.

Related Files

vReliable Datagram Sockets (RDS) rds_page_copy_user Privilege Escalation: Posted Dec 23, 2019; Authored by Dan Rosenberg, Brendan Coles | Site metasploit.com; This Metasploit module exploits a vulnerability in the rds_page_copy_user function in net/rds/page.c (RDS) in Linux kernel versions 2.6.30 to 2.6.36-rc8 to execute code as root (CVE-2010-3904). This module has been tested successfully on Fedora 13 (i686) kernel version 2.6.33.3-85.fc13.i686.PAE and Ubuntu 10.04 (x86_64) with kernel version 2.6.32-21-generic.; tags | exploit, kernel, root; systems | linux, fedora, ubuntu; advisories | CVE-2010-3904; MD5 | ae11a67b34fba9d465c0f0b7d84392d0; Download | Favorite | Comments (1)

Reliable Datagram Sockets (RDS) Privilege Escalation: Posted May 19, 2018; Authored by Dan Rosenberg, Brendan Coles | Site metasploit.com; This Metasploit module exploits a vulnerability in the rds_page_copy_user function in net/rds/page.c (RDS) in Linux kernel versions 2.6.30 to 2.6.36-rc8 to execute code as root (CVE-2010-3904). This Metasploit module has been tested successfully on Fedora 13 (i686) with kernel version 2.6.33.3-85.fc13.i686.PAE and Ubuntu 10.04 (x86_64) with kernel version 2.6.32-21-generic.; tags | exploit, kernel, root; systems | linux, fedora, ubuntu; advisories | CVE-2010-3904; MD5 | ca0aaa65162c3d2e20a520b81415f4ae; Download | Favorite | Comments (0)

Symantec Messaging Gateway Backdoor / Privilege Escalation: Posted Nov 30, 2012; Authored by Ben Williams | Site nccgroup.com; Symantec Messaging Gateway version 9.5.3-3 suffers from backdoor account and privilege escalation vulnerabilities.; tags | advisory, vulnerability; advisories | CVE-2007-4573, CVE-2008-0009, CVE-2008-4210, CVE-2009-1046, CVE-2009-1337, CVE-2009-2692, CVE-2009-3547, CVE-2010-1146, CVE-2010-2959, CVE-2010-3848, CVE-2010-3849, CVE-2010-3850, CVE-2010-3904, CVE-2010-4073, CVE-2010-4258, CVE-2010-4347; MD5 | e1a9b2ba54c980d0ecd312d2a5ed1672; Download | Favorite | Comments (0)

VMware Security Advisory 2011-0012: Posted Oct 14, 2011; Authored by VMware | Site vmware.com; VMware Security Advisory 2011-0012 - VMware ESXi and ESX updates to third party libraries and ESX Service Console address several security issues.; tags | advisory; advisories | CVE-2010-0296, CVE-2010-1083, CVE-2010-1323, CVE-2010-2492, CVE-2010-2798, CVE-2010-2938, CVE-2010-2942, CVE-2010-2943, CVE-2010-3015, CVE-2010-3066, CVE-2010-3067, CVE-2010-3078, CVE-2010-3086, CVE-2010-3296, CVE-2010-3432, CVE-2010-3442, CVE-2010-3477, CVE-2010-3699, CVE-2010-3858, CVE-2010-3859, CVE-2010-3865, CVE-2010-3876, CVE-2010-3877, CVE-2010-3880, CVE-2010-3904, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075; MD5 | 09895b515d192ac17d0b7edd6177d76b; Download | Favorite | Comments (0)

Ubuntu Security Notice USN-1119-1: Posted Apr 20, 2011; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 1119-1 - Multiple security flaws have been fixed in the OMAP4 port of the Linux kernel.; tags | advisory, kernel; systems | linux, ubuntu; advisories | CVE-2010-3849, CVE-2010-3850, CVE-2010-2954, CVE-2010-2955, CVE-2010-2960, CVE-2010-2962, CVE-2010-2963, CVE-2010-3079, CVE-2010-3080, CVE-2010-3081, CVE-2010-3437, CVE-2010-3705, CVE-2010-3848, CVE-2010-3849, CVE-2010-3850, CVE-2010-3861, CVE-2010-3865, CVE-2010-3873, CVE-2010-3875, CVE-2010-3876, CVE-2010-3877, CVE-2010-3904, CVE-2010-4072, CVE-2010-4079, CVE-2010-4158, CVE-2010-4164, CVE-2010-4165, CVE-2010-4249; MD5 | c166b2a4edaba2cfee36fd0164fbf8a9; Download | Favorite | Comments (0)

Linux RDS Protocol Local Privilege Escalation: Posted Oct 19, 2010; Authored by Dan Rosenberg | Site vsecurity.com; On October 13th, VSR identified a vulnerability in the RDS protocol, as implemented in the Linux kernel. Because kernel functions responsible for copying data between kernel and user space failed to verify that a user-provided address actually resided in the user segment, a local attacker could issue specially crafted socket function calls to write arbitrary values into kernel memory. By leveraging this capability, it is possible for unprivileged users to escalate privileges to root.; tags | advisory, arbitrary, kernel, local, root, protocol; systems | linux; advisories | CVE-2010-3904; MD5 | 0e9e2bb825f575a3913d96c0801df0b5; Download | Favorite | Comments (0)

Linux Kernel 2.6.36-rc8 RDS Privilege Escalation: Posted Oct 19, 2010; Authored by Dan Rosenberg | Site vsecurity.com; Linux kernel versions 2.6.36-rc8 and below RDS privilege escalation exploit.; tags | exploit, kernel; systems | linux; advisories | CVE-2010-3904; MD5 | 54ff3c68fb1a6ff5120c84c765210789; Download | Favorite | Comments (0)

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 84 files
Ubuntu 45 files
boku 21 files
Debian 21 files
Google Security Research 20 files
Todor Donev 9 files
Apple 8 files
J3rryBl4nks 8 files
Thierry Zoller 7 files
Ihsan Sencan 6 files

File Archives

Systems

AIX (416)
Apple (1,703)
BSD (366)
Cisco (1,885)
Debian (5,944)
Fedora (1,687)
FreeBSD (1,239)
Gentoo (3,733)
HPUX (870)
iOS (240)
iPhone (107)
IRIX (220)
Juniper (67)
Linux (36,915)
Mac OS X (663)
Mandriva (3,105)
NetBSD (255)
OpenBSD (470)
RedHat (8,107)
Slackware (941)
Solaris (1,587)
SUSE (1,444)
Ubuntu (6,569)
UNIX (8,599)
UnixWare (177)
Windows (5,597)
Other

CVE-2010-3904

Overview

Related Files

File Archive:

February 2020

Top Authors In Last 30 Days

File Tags

File Archives

Systems