CVE-2010-2492

Published Sep 8, 2010

Last updated 2 years ago

Overview

Description: Buffer overflow in the ecryptfs_uid_hash macro in fs/ecryptfs/messaging.c in the eCryptfs subsystem in the Linux kernel before 2.6.35 might allow local users to gain privileges or cause a denial of service (system crash) via unspecified vectors.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-120

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABBE25DF-453B-47E6-A6ED-6984E7576F69",
            "versionEndExcluding": "2.6.35"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BC337BB7-9A45-4406-A783-851F279130EE"
          },
          {
            "criteria": "cpe:2.3:o:vmware:esx:4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B6BA46F-4E8C-4B2A-AE92-81B9F1B4D56C"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:avaya:aura_communication_manager:5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6567360-D041-4C5A-A9DF-39223E5FF895"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_presence_services:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "47508B6A-134F-4795-A5D1-4256D38BCE57"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_presence_services:6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "876BFAD3-DF3C-419D-89AD-160BC15F2B09"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_presence_services:6.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C308358C-A051-4E86-8621-EC7DEC866C1B"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_session_manager:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C5F5625-1601-4EFC-B710-58B145F10708"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_session_manager:5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB6AB5D8-6E22-483E-A91E-0880FF9A2C97"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_session_manager:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D17B8A88-2355-409B-BF79-8BE78BCBC66A"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_manager:5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44D546F5-2751-41F0-9442-8F1EB904E294"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_manager:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E7C82ABC-54B9-454C-A9F9-2DBFF1D62364"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_manager:6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA1A137E-0BA3-4E17-AC1F-AEB92C205B78"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_manager:6.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C7E6391-D86C-45AF-962C-7162FC8B706C"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_platform:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76E0FA7D-9F1B-4B1D-8B2D-85D2ED6DC00C"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_platform:6.0:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7F1DDA6-7664-41AA-8364-8BEF7834531E"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_platform:6.0:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC1A931C-EEB1-4630-A1F5-C0B5166724A1"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_voice_portal:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C7894BA-98D1-41FE-9FD2-BE07FBFD4627"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_voice_portal:5.1:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C73D7859-1A8E-4EBE-AC77-7E3478FB81D1"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_voice_portal:5.1:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E774F4FD-5088-4FD5-919D-F12453ADB215"
          },
          {
            "criteria": "cpe:2.3:a:avaya:iq:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C850D33E-6E6A-4AAC-96B9-8510C902E38A"
          },
          {
            "criteria": "cpe:2.3:a:avaya:iq:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "75A6A088-DE78-406D-AC52-66159B8A9869"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Configurations

References