Main Vulnerability Database Exploits ID:713 - Exploit for Privilege escalation in Linux kernel - CVE-2010-3081

ID:713 - Exploit for Privilege escalation in Linux kernel - CVE-2010-3081

Published: March 18, 2020

Vulnerability identifier: #VU3476

Vulnerability risk: Medium

CVE-ID: CVE-2010-3081

CWE-ID: CWE-264

Exploitation vector: Local access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.exploit-db.com/exploits/15024/

Vulnerability description

The vulnerability allows a local user to escalate privileges.

The vulnerability exists due to improper allocation of userspace memory required for the 32-bit compatibility layer within compat_alloc_user_space() function in include/asm/compat.h file on on 64-bit platforms. A local user can call compat_mc_getsockopt() function and gain control over vulnerable system.

Successful exploitation of the vulnerability allows a local non-privileged user to gain root privileges.

Remediation

Update to kernel version 2.6.36-rc4-git2 or newer.

ID:713 - Exploit for Privilege escalation in Linux kernel - CVE-2010-3081

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human