CVE-2010-4210
CVE-2010-4210
The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a mutex that was not previously locked, which allows local users to cause a denial of service (kernel panic), overwrite arbitrary memory locations, and possibly execute arbitrary code via vectors related to opening a file on a file system that uses pseudofs.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/15206/unverifiedexploitdbwww.exploit-db.com/exploits/15206unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://secunia.com/advisories/42200http://security.FreeBSD.org/advisories/FreeBSD-SA-10:09.pseudofs.aschttps://exchange.xforce.ibmcloud.com/vulnerabilities/63218https://www.exploit-db.com/exploits/15206/http://www.securitytracker.com/id?1024724http://www.vupen.com/english/advisories/2010/2956