Vulnerability Name: | CVE-2010-0729 (CCN-56890) | ||||||||||||
Assigned: | 2010-02-22 | ||||||||||||
Published: | 2010-02-22 | ||||||||||||
Updated: | 2017-09-19 | ||||||||||||
Summary: | A certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 4 on the ia64 platform allows local users to use ptrace on an arbitrary process, and consequently gain privileges, via vectors related to a missing ptrace_check_attach call. | ||||||||||||
CVSS v3 Severity: | 5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||||||
CVSS v2 Severity: | 6.9 Medium (CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C) 5.1 Medium (Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
3.4 Low (REDHAT Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
| ||||||||||||
Vulnerability Type: | CWE-264 | ||||||||||||
Vulnerability Consequences: | Gain Privileges | ||||||||||||
References: | Source: MITRE Type: CNA CVE-2010-0729 Source: CCN Type: RHSA-2010-0394 Important: kernel security, bug fix, and enhancement update Source: CONFIRM Type: UNKNOWN http://support.avaya.com/css/P8/documents/100090459 Source: MLIST Type: UNKNOWN [oss-security] 20100312 CVE-2010-0729 kernel: ia64: ptrace: peek_or_poke requests miss ptrace_check_attach() Source: CCN Type: OSVDB ID: 63080 Linux Kernel on RHEL ia64 ptrace_check_attach Call Local Privilege Escalation Source: REDHAT Type: UNKNOWN RHSA-2010:0394 Source: BID Type: UNKNOWN 38702 Source: CCN Type: BID-38702 Red Hat Enterprise Linux 'ptrace()' Local Privilege Escalation Vulnerability Source: CCN Type: Red Hat Bugzilla Bug 572007 CVE-2010-0729 kernel: ia64: ptrace: peek_or_poke requests miss ptrace_check_attach() Source: CONFIRM Type: UNKNOWN https://bugzilla.redhat.com/show_bug.cgi?id=572007 Source: XF Type: UNKNOWN linux-kernel-ptrace-priv-escalation(56890) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:8687 | ||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration RedHat 1: Configuration RedHat 2: Configuration RedHat 3: Configuration RedHat 4: Configuration RedHat 5: ![]() | ||||||||||||
Oval Definitions | |||||||||||||
| |||||||||||||
BACK |