CVE-2010-1437
HIGHLinux Kernel < 2.6.34 - Race Condition in Keyring Deletion
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2010-1437. PoCs published by Toshiyuki Okajima.
AI-analyzed exploit summary This exploit leverages a local memory-corruption vulnerability in the Linux kernel (CVE-2010-1437) by repeatedly calling 'keyctl session' to trigger a denial-of-service (DoS) condition. The PoC may also allow arbitrary code execution, though this is unconfirmed.
Description
Race condition in the find_keyring_by_name function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause a denial of service (memory corruption and system crash) or possibly have unspecified other impact via keyctl session commands that trigger access to a dead keyring that is undergoing deletion by the key_cleanup function.
Exploits (1)
This exploit leverages a local memory-corruption vulnerability in the Linux kernel (CVE-2010-1437) by repeatedly calling 'keyctl session' to trigger a denial-of-service (DoS) condition. The PoC may also allow arbitrary code execution, though this is unconfirmed.
References (21)
Scores
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H