Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-0453Improper Input Validation in Opensolaris

CWE-20Improper Input Validation4 documents4 sources
Severity
4.9MEDIUMNVD
EPSS
0.2%
top 55.55%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
SUN OpensolarisSUN Solaris
Timeline
PublishedFeb 3
Latest updateMay 2

Description

The ucode_ioctl function in intel/io/ucode_drv.c in Sun Solaris 10 and OpenSolaris snv_69 through snv_133, when running on x86 architectures, allows local users to cause a denial of service (panic) via a request with a 0 size value to the UCODE_GET_VERSION IOCTL, which triggers a NULL pointer dereference in the ucode_get_rev function, related to retrieval of the microcode revision.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages2 packages

NVDsun/opensolaris65 versions+64
NVDsun/solaris10.0

Patches

Patch: sunsolve.sun.comPatch: www.vupen.comPatch: sunsolve.sun.com

🔴Vulnerability Details

2
GHSA
GHSA-gjph-m3rc-hxq6: The ucode_ioctl function in intel/io/ucode_drv2022-05-02
CVEList
CVE-2010-0453: The ucode_ioctl function in intel/io/ucode_drv2010-02-03

💥Exploits & PoCs

1
Exploit-DB
Solaris/Open Solaris UCODE_GET_VERSION IOCTL - Denial of Service2010-02-07
CVE-2010-0453 — Improper Input Validation | cvebase