CVE-2010-4162

DEB

MediumConfirmedExploit available

Multiple integer overflows in fs/bio.c in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service (system crash) vi…

CVSS

4.7

Medium

EPSS

0.00

p22

Published

2010-01-01

Updated

2010-01-01

Description

Multiple integer overflows in fs/bio.c in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service (system crash) via a crafted device ioctl to a SCSI device.

Tags · CWE

CWE-190

CAPEC-92

Affected products

Fedora

CVSS vector

AV:L/AC:M/Au:N/C:N/I:N/A:C

Timeline

2010-01-01

Published

2010-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: L

Local (L)

Attack Complexity

AC: M

Medium

Authentication

Au: N

None (N)

Confidentiality Impact

C: N

None (N)

Integrity Impact

I: N

None (N)

Availability Impact

A: C

Complete

Exploit indicators

EPSS

0.001 · p22

Known exploited (KEV)

Known exploits — Сканер-ВС

15024

exploitdb · https://www.exploit-db.com/exploits/15024

Enterprise

15150

exploitdb · https://www.exploit-db.com/exploits/15150

Enterprise

15622

exploitdb · https://www.exploit-db.com/exploits/15622

Enterprise

17787

exploitdb · https://www.exploit-db.com/exploits/17787

Enterprise

34987

exploitdb · https://www.exploit-db.com/exploits/34987

Enterprise

Affected software

Product	Vendor	Status
kernel		Tracked
kernel-rt		Tracked
linux		Tracked
linux-2.6		Tracked
fedora	*	Tracked
linux_enterprise_desktop	*	Tracked
linux_enterprise_real_time_extension	*	Tracked
linux_enterprise_server	*	Tracked
linux_enterprise_software_development_kit	*	Tracked
linux_kernel	*	Tracked
opensuse	*	Tracked

Source databases

DEB

CVE

RED

UBU

Related vulnerabilities

BDU:2015-04589 BDU:2015-04590