VDB
CVE-2010-2070
CVE-2010-2070
PUBLISHED
CVSS 4.900000095367432 MEDIUM
arch/ia64/xen/faults.c in Xen 3.4 and 4.0 in Linux kernel 2.6.18, and possibly other kernel versions, when running on IA-64 architectures, allows local users to cause a denial of service and "turn on BE by modifying the user mask of the PSR," as demonstrated via exploitation of CVE-2006-0742.
EPSS 0.09% · 26.1th percentile
Risk Scores
CVSS 2.0
4.900000095367432
EPSS Score
0.09%
26.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| xensource | xen | 3.4.0, 4.0.0 |
Exploit Intelligence
- RHSA-2010:0610 (circl)
- http://xenbits.xensource.com/xen-4.0-testing.hg?rev/42caadb14edb (circl)
- [oss-security] 20100611 CVE-2010-2070 kernel-xen: ia64-xen: unset be from the task psr (circl)
- 65541 (circl)
- 40776 (circl)
- 43315 (circl)
- xen-faults-dos(59373) (circl)
- http://www.vmware.com/security/advisories/VMSA-2011-0003.html (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=586415 (circl)
- 20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX (circl)
Timeline
- Jun 16, 2010 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- http://osvdb.org/65541 technical
- http://secunia.com/advisories/43315 technical
- http://www.openwall.com/lists/oss-security/2010/06/10/2 technical
- http://www.redhat.com/support/errata/RHSA-2010-0610.html technical
- http://www.securityfocus.com/archive/1/516397/100/0/threaded technical
- http://www.securityfocus.com/bid/40776 technical
- http://www.vmware.com/security/advisories/VMSA-2011-0003.html technical
- http://xenbits.xensource.com/xen-4.0-testing.hg?rev/42caadb14edb technical
- https://bugzilla.redhat.com/show_bug.cgi?id=586415 technical
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59373 technical
- https://nvd.nist.gov/vuln/detail/CVE-2010-2070 advisory