CVE-2010-2693

Published Jul 13, 2010

Last updated 3 months ago

CVSS info 7.2

Overview

Description: FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and gain privileges via the sendfile system call.
Source: secteam@freebsd.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-264

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "803EFA9F-B7CB-4511-B1C1-381170CA9A23"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:pre-release:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14D72C9B-EEB0-4605-BEA2-F77092129245"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52DBF406-9C77-4DDA-AB7D-40FAE40023D0"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:release-p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20A31C9A-A928-4C9B-BB49-0E53227746DC"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:release-p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99FB7443-F942-402A-9104-64677EAF014E"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:release-p4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "305A4C3D-C63D-4D1F-80FF-549182A0D9B5"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:release-p5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2A31704-E99F-4DBE-ABA4-EC3E566DE6CB"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:release-p6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E634CDF4-F77B-4917-A452-907A771B5B0D"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F948527C-A01E-4315-80B6-47FACE18A34F"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.2:pre-release:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B573401-DC6F-4AFE-92F5-D96F785D2107"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.2:stable:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60D40129-108B-421B-9990-6C6F381C96AD"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F25FB59-1E4F-4420-8482-8007FF5E2411"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3CF1F9EF-01AF-4708-AE02-765360AF3D66"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:8.1:pre-release:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F1AED70-C903-43AE-865D-E9B9348CB166"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References