Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2010-4170
Description:The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBE_OPTIONS environment variable to specify a malicious configuration file.
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2010-4170
BugTraq ID: 44914
Debian Security Information: DSA-2348 (Google Search)
RedHat Security Advisories: RHSA-2010:0894
RedHat Security Advisories: RHSA-2010:0895
XForce ISS Database: systemtap-staprun-priv-escalation(63344)

© 1998-2021 E-Soft Inc. All rights reserved.