CVE-2010-2059

EPSS 0.05% · P14 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-2059

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and RPM before 4.4.3, does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

RPM 'lib/fsm.c'可执行文件权限许可和访问控制问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

RPM软件包升级对文件进行替换时，RPM的lib/fsm.c没有正确的重置可执行文件的元数据，本地用户可以通过创建易受攻击的(1)setuid或(2)setgid文件的hard链接，获取权限。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2010-2059

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2010-2059

Please Login to view more intelligence information

http://www.vmware.com/security/advisories/VMSA-2011-0004.htmlx_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=598775x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=125517x_refsource_CONFIRM
http://distrib-coffee.ipsl.jussieu.fr/pub/mirrors/rpm/files/rpm/rpm-4.4/rpm-4.4.3.tar.gzx_refsource_CONFIRM
http://rpm.org/gitweb?p=rpm.git%3Ba=commit%3Bh=ca2d6b2b484f1501eafdde02e1688409340d2383x_refsource_CONFIRM
http://secunia.com/advisories/40028third-party-advisoryx_refsource_SECUNIA
http://www.vupen.com/english/advisories/2011/0606vdb-entryx_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDVSA-2010:180vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2010-0679.htmlvendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.htmlvendor-advisoryx_refsource_SUSE
http://www.openwall.com/lists/oss-security/2010/06/02/2mailing-listx_refsource_MLIST
http://marc.info/?l=oss-security&m=127559059928131&w=2mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2010/06/02/3mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2010/06/03/5mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2010/06/04/1mailing-listx_refsource_MLIST
http://www.securityfocus.com/archive/1/516909/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://lists.vmware.com/pipermail/security-announce/2011/000126.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2010-2059

Same Patch Batch · n/a · 2010-06-08 · 36 CVEs total

CVE-2010-1257		Microsoft IE toStaticHTML跨域信息泄露漏洞
CVE-2010-1248		Microsoft Office Excel HFPicture记录解析缓冲区溢出漏洞
CVE-2010-1249		Microsoft Office Excel ExternName记录解析缓冲区溢出漏洞
CVE-2010-1250		Microsoft Office Excel EDG和Publisher记录解析堆溢出漏洞
CVE-2010-1251		Microsoft Office Excel记录解析栈溢出漏洞
CVE-2010-1252		Microsoft Office Excel字符串解析未初始化变量漏洞
CVE-2010-1253		Microsoft Office Excel DBQueryExt记录ADO对象解析远程代码执行漏洞
CVE-2010-1254		Microsoft Office XML Converter for Mac本地权限提升漏洞
CVE-2010-1256		Microsoft IIS认证令牌处理远程代码执行漏洞
CVE-2010-1247		Microsoft Office Excel RTD记录解析堆缓冲区溢出漏洞
CVE-2010-1263		Microsoft Office COM对象验证远程代码执行漏洞
CVE-2010-1264		Microsoft SharePoint帮助页面远程拒绝服务漏洞
CVE-2004-2768		Debian dpkg权限许可和访问控制漏洞
CVE-2005-4889		RPM 'lib/fsm.c'权限许可和访问控制漏洞
CVE-2010-1297		Adobe Flash Player/Reader/Acrobat AVM2 'newfunction()'远程代码执行漏洞
CVE-2010-2197		RPM rpmbuild权限许可和访问控制
CVE-2010-2198		RPM 'lib/fsm.c'权限提升和访问控制绕过漏洞
CVE-2010-2199		RPM 'lib/fsm.c'访问控制绕过漏洞
CVE-2010-1880		Microsoft Windows Media Decompression 远程代码执行漏洞
CVE-2010-0485		Windows Win32k.sys驱动创建窗口权限提升漏洞

Showing top 20 of 36 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2010-2059

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2010-2059

I. Basic Information for CVE-2010-2059

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2010-2059

III. Intelligence Information for CVE-2010-2059

Same Patch Batch · n/a · 2010-06-08 · 36 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2010-2059

Leave a comment