Main Vulnerability Database Exploits ID:4583 - Exploit for Integer overflow in Linux kernel - CVE-2010-2959

ID:4583 - Exploit for Integer overflow in Linux kernel - CVE-2010-2959

Published: September 9, 2020

Vulnerability identifier: #VU46359

Vulnerability risk: High

CVE-ID: CVE-2010-2959

CWE-ID: CWE-190

Exploitation vector: Remote access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.exploit-db.com/exploits/14814/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Integer overflow in net/can/bcm.c in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows attackers to execute arbitrary code or cause a denial of service (system crash) via crafted CAN traffic.

Remediation

Install update from vendor's website.

ID:4583 - Exploit for Integer overflow in Linux kernel - CVE-2010-2959

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human