| Vulnerability Name: | CVE-2010-3110 (CCN-62638) | ||||||||
| Assigned: | 2010-08-02 | ||||||||
| Published: | 2010-08-02 | ||||||||
| Updated: | 2018-10-30 | ||||||||
| Summary: | Multiple buffer overflows in the Novell Client novfs module for the Linux kernel in SUSE Linux Enterprise 11 SP1 and openSUSE 11.3 allow local users to gain privileges via unspecified vectors. | ||||||||
| CVSS v3 Severity: | 5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
| CVSS v2 Severity: | 7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C) 5.3 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-119 | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2010-3110 Source: SUSE Type: Patch, Vendor Advisory SUSE-SA:2010:033 Source: CCN Type: The Linux Kernel Archives Web site The Linux Kernel Archives Source: CCN Type: OSVDB ID: 67915 openSUSE Novell Client novfs /proc Interface Multiple Unspecified Overflow Source: XF Type: UNKNOWN linux-kernel-novfs-bo(62638) Source: SUSE Type: SUSE-SA:2010:033 Linux kernel security update Source: SUSE Type: SUSE-SA:2010:039 Linux kernel security update | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| Oval Definitions | |||||||||
| |||||||||
| BACK | |||||||||