CVE-2010-4347
Public Exploits 1
ExploitDB · 1 EDB-15774#CVE-2010-4347 [local]
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2010-4347
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The ACPI subsystem in the Linux kernel before 2.6.36.2 uses 0222 permissions for the debugfs custom_method file, which allows local users to gain privileges by placing a custom ACPI method in the ACPI interpreter tables, related to the acpi_debugfs_init function in drivers/acpi/debugfs.c.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux Kernel 'drivers/acpi/debugfs.c'本地权限提升漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 2.6.36.2之前版本中的ACPI子系统为debugfs custom_method文件使用了0222许可。本地用户可以通过在ACPI翻译表中放置本地ACPI方法获取特权。该漏洞与在drivers/acpi/debugfs.c文件中的acpi_debugfs_init函数有关。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2010-4347
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2010-4347
请登录查看更多情报信息。
- http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.2x_refsource_CONFIRM
- https://bugzilla.redhat.com/show_bug.cgi?id=663542x_refsource_CONFIRM
- http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.htmlvendor-advisoryx_refsource_SUSE
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.htmlvendor-advisoryx_refsource_SUSE
- https://nvd.nist.gov/vuln/detail/CVE-2010-4347
Same Patch Batch · n/a · 2010-12-22 · 45 CVEs total
| CVE-2010-4584 | Opera X.509证书加密问题漏洞 | |
| CVE-2010-4587 | Opera设计错误漏洞 | |
| CVE-2010-4586 | Opera默认配置错误漏洞 | |
| CVE-2010-0114 | Symantec Endpoint Protection fw_charts.php文件任意代码执行漏洞 | |
| CVE-2010-4574 | Google Chrome Pickle::Pickle函数拒绝服务漏洞 | |
| CVE-2010-4575 | Google Chrome ThemeInstalledInfoBarDelegate::Observe函数拒绝服务漏洞 | |
| CVE-2010-4576 | Google Chrome dispatcher.cc文件空指针引用漏洞 | |
| CVE-2010-4577 | Google Chrome CSS越界读取漏洞 | |
| CVE-2010-4578 | Google Chrome拒绝服务攻击漏洞 | |
| CVE-2010-4116 | HP StorageWorks Storage Mirroring远程代码执行漏洞 | |
| CVE-2010-4585 | Opera自动升级功能拒绝服务漏洞 | |
| CVE-2010-4583 | Opera Turbo设计错误漏洞 | |
| CVE-2010-4582 | Opera权限许可和访问控制漏洞 | |
| CVE-2010-4581 | Opera opera_browser未明漏洞 | |
| CVE-2010-4580 | Opera信息泄漏漏洞 | |
| CVE-2010-4579 | Opera设计错误漏洞 | |
| CVE-2010-4333 | Pangramsoft Pointter PHP Content Management System授权问题漏洞 | |
| CVE-2010-4332 | Pangramsoft Pointter PHP Content Management System管理特权绕过漏洞 | |
| CVE-2010-4275 | Dmasoftlab Radius Manager New User Group Script任意代码执行漏洞 | |
| CVE-2010-2590 | SAP Crystal Reports Print ActiveX Control缓冲区溢出漏洞 |
Showing top 20 of 45 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2010-4347
No comments yet