CVE-2010-4655 vulnerability in Canonical and Other Products
Published on July 18, 2011
net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel heap memory by leveraging the CAP_NET_ADMIN capability for an ethtool ioctl call.
Products Associated with CVE-2010-4655
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2010-4655 are published in these products:
Exploit Probability
EPSS
0.05%
Percentile
16.46%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.