CVE-2010-0307
published 2010-02-17CVE-2010-0307: The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on the x86_64 platform does not ensure that the ELF interpreter is…
PriorityP417medium4.7CVSS 2.0
AVLACMAuNCNINAC
EXPLOIT
EPSS
0.83%
53.0th percentile
The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on the x86_64 platform does not ensure that the ELF interpreter is available before a call to the SET_PERSONALITY macro, which allows local users to cause a denial of service (system crash) via a 32-bit application that attempts to execute a 64-bit application and then triggers a segmentation fault, as demonstrated by amd64_killer, related to the flush_old_exec function.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| linux | linux_kernel | < 2.6.32.8 | 2.6.32.8 |
| vmware | esxi | — | — |
| vmware | vmware_tools | — | — |
| vmware | vmware_vcenter_server | — | — |
| vmware | vmware_vsphere | — | — |
| vmware | vmware_workstation | — | — |
CVSS provenance
nvdv2.04.7MEDIUMAV:L/AC:M/Au:N/C:N/I:N/A:C
vendor_redhat4.7MEDIUM
vendor_ubuntu4.7MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VMware
Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
vendor_vmware·2011-02-10·CVSS 5.0
CVE-2008-0085 [MEDIUM] Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
VMSA-2011-0003: Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX VMware Security Advisory VMware Security Advisory Advisory ID: VMware Security Advisory Synopsis: Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX VMware Security Advisory Issue date: VMware Security Advisory Updated on: VMware Security Advisory CVE numbers:
CVEs: CVE-2008-0085, CVE-2008-0086, CVE-2008-0106, CVE-2008-0107, CVE-2008-3825, CVE-2008-5416, CVE-2009-1384, CVE-2009-2693, CVE-2009-2901, CVE-2009-2902, CVE-2009-3548, CVE-2009-3555, CVE-2009-4308, CVE-2010-0003, CVE-2010-0007, CVE-2010-0008, CVE-2010-0082, CVE-2010-0084, CVE-2010-0085,
VMware
VMware ESX third party update for Service Console kernel
vendor_vmware·2010-11-29·CVSS 4.6
CVE-2010-0291 [MEDIUM] VMware ESX third party update for Service Console kernel
VMSA-2010-0017: VMware ESX third party update for Service Console kernel
a. Service Console OS update for COS kernel packag This patch updates the Service Console kernel to fix a stack pointer underflow issue in the 32-bit compatibility layer. Exploitation of this issue could allow a local user to gain additional privileges. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2010-3081 to this issue. Column 4 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available. VMware Product ============= Product version ======== Running on ======= Replace with/ Apply Patch ================= VMware Product ============= VirtualCenter Product version ======== any Running on ======= Windows Replac
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2010-03-17·CVSS 4.7
CVE-2010-0307 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Linux kernel vulnerabilities
Mathias Krause discovered that the Linux kernel did not correctly handle
missing ELF interpreters. A local attacker could exploit this to cause the
system to crash, leading to a denial of service. (CVE-2010-0307)
Marcelo Tosatti discovered that the Linux kernel's hardware virtualization
did not correctly handle reading the /dev/port special device. A local
attacker in a guest operating system could issue a specific read that
would cause the host system to crash, leading to a denial of service.
(CVE-2010-0309)
Sebastian Krahmer discovered that the Linux kernel did not correctly
handle netlink connector messages. A local attacker could exploit this
to consume kernel memory, leading to a denial of service. (CVE-2010
Red Hat
kernel: DoS on x86_64
vendor_redhat·2010-01-28·CVSS 4.7
CVE-2010-0307 [MEDIUM] kernel: DoS on x86_64
kernel: DoS on x86_64
The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on the x86_64 platform does not ensure that the ELF interpreter is available before a call to the SET_PERSONALITY macro, which allows local users to cause a denial of service (system crash) via a 32-bit application that attempts to execute a 64-bit application and then triggers a segmentation fault, as demonstrated by amd64_killer, related to the flush_old_exec function.
Statement: This issue is not planned to be fixed in Red Hat Enterprise Linux 3, due to this product being in Production 3 of its maintenance life-cycle, where only qualified security errata of important or critical impact are addressed.
For further information about Errata Support Policy, visit: https://access.redhat
VulDB
Intel E1000 up to 7.4.35 load_elf_binary denial of service (EDB-33585 / Nessus ID 68037)
vuldb·2026-04-30·CVSS 4.7
CVE-2010-0307 [MEDIUM] Intel E1000 up to 7.4.35 load_elf_binary denial of service (EDB-33585 / Nessus ID 68037)
A vulnerability categorized as problematic has been discovered in Intel E1000. Affected is the function load_elf_binary. The manipulation results in denial of service.
This vulnerability is cataloged as CVE-2010-0307. The attack must be initiated from a local position. Furthermore, there is an exploit available.
It is advisable to upgrade the affected component.
GHSA
GHSA-536m-75pg-6c2v: The load_elf_binary function in fs/binfmt_elf
ghsa_unreviewed·2022-05-02
CVE-2010-0307 [MEDIUM] GHSA-536m-75pg-6c2v: The load_elf_binary function in fs/binfmt_elf
The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on the x86_64 platform does not ensure that the ELF interpreter is available before a call to the SET_PERSONALITY macro, which allows local users to cause a denial of service (system crash) via a 32-bit application that attempts to execute a 64-bit application and then triggers a segmentation fault, as demonstrated by amd64_killer, related to the flush_old_exec function.
No detection rules found.
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=221af7f87b97431e3ee21ce4b0e77d5411cf1549http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035159.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-03/msg00000.htmlhttp://marc.info/?l=linux-mm&m=126466407724382&w=2http://marc.info/?t=126466700200002&r=1&w=2http://secunia.com/advisories/38492http://secunia.com/advisories/38779http://secunia.com/advisories/38922http://secunia.com/advisories/39649http://secunia.com/advisories/43315http://support.avaya.com/css/P8/documents/100088287http://www.debian.org/security/2010/dsa-1996http://www.globalsecuritymag.com/Vigil-nce-Linux-kernel-denial-of%2C20100202%2C15754.htmlhttp://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.8http://www.mandriva.com/security/advisories?name=MDVSA-2010:066http://www.openwall.com/lists/oss-security/2010/02/01/1http://www.openwall.com/lists/oss-security/2010/02/01/5http://www.openwall.com/lists/oss-security/2010/02/04/1http://www.openwall.com/lists/oss-security/2010/02/04/9http://www.redhat.com/support/errata/RHSA-2010-0398.htmlhttp://www.redhat.com/support/errata/RHSA-2010-0771.htmlhttp://www.securityfocus.com/archive/1/516397/100/0/threadedhttp://www.securityfocus.com/bid/38027http://www.ubuntu.com/usn/USN-914-1http://www.vmware.com/security/advisories/VMSA-2011-0003.htmlhttp://www.vupen.com/english/advisories/2010/0638https://bugzilla.redhat.com/show_bug.cgi?id=560547https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10870https://rhn.redhat.com/errata/RHSA-2010-0146.htmlhttp://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=221af7f87b97431e3ee21ce4b0e77d5411cf1549http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035159.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-03/msg00000.htmlhttp://marc.info/?l=linux-mm&m=126466407724382&w=2http://marc.info/?t=126466700200002&r=1&w=2http://secunia.com/advisories/38492http://secunia.com/advisories/38779http://secunia.com/advisories/38922http://secunia.com/advisories/39649http://secunia.com/advisories/43315http://support.avaya.com/css/P8/documents/100088287http://www.debian.org/security/2010/dsa-1996http://www.globalsecuritymag.com/Vigil-nce-Linux-kernel-denial-of%2C20100202%2C15754.htmlhttp://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.8http://www.mandriva.com/security/advisories?name=MDVSA-2010:066http://www.openwall.com/lists/oss-security/2010/02/01/1http://www.openwall.com/lists/oss-security/2010/02/01/5http://www.openwall.com/lists/oss-security/2010/02/04/1http://www.openwall.com/lists/oss-security/2010/02/04/9http://www.redhat.com/support/errata/RHSA-2010-0398.htmlhttp://www.redhat.com/support/errata/RHSA-2010-0771.htmlhttp://www.securityfocus.com/archive/1/516397/100/0/threadedhttp://www.securityfocus.com/bid/38027http://www.ubuntu.com/usn/USN-914-1http://www.vmware.com/security/advisories/VMSA-2011-0003.htmlhttp://www.vupen.com/english/advisories/2010/0638https://bugzilla.redhat.com/show_bug.cgi?id=560547https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10870https://rhn.redhat.com/errata/RHSA-2010-0146.html
2010-02-17
Published