CVE-2010-3861 vulnerability in Canonical and Other Products
Published on December 10, 2010

The ethtool_get_rxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize a certain block of heap memory, which allows local users to obtain potentially sensitive information via an ETHTOOL_GRXCLSRLALL ethtool command with a large info.rule_cnt value, a different vulnerability than CVE-2010-2478.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2010-3861

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2010-3861 are published in these products:

Canonical Ubuntu Linux

Linux Kernel

OpenSuse

Suse Linux Enterprise Desktop

Suse Linux Enterprise Real Time Extension

Suse Linux Enterprise Server

Exploit Probability

EPSS

0.05%

Percentile

16.18%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2010-3861 vulnerability in Canonical and Other ProductsPublished on December 10, 2010

Products Associated with CVE-2010-3861

Exploit Probability

CVE-2010-3861 vulnerability in Canonical and Other Products
Published on December 10, 2010