The ec_dev_ioctl function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2 does not require the CAP_NET_ADMIN capability, which allows local users to bypass intended access restrictions and configure econet addresses via an SIOCSIFADDR ioctl call.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2010-12-30T18:00:00
Updated: 2011-01-11T10:00:00
Reserved: 2010-10-08T00:00:00
Link: CVE-2010-3850
JSON object: View
NVD Information
Status : Modified
Published: 2010-12-30T19:00:03.580
Modified: 2023-02-13T04:26:22.977
Link: CVE-2010-3850
JSON object: View
Redhat Information
No data.
CWE