Unverified Module Unloading Vulnerability in SystemTap 1.3

Unverified Module Unloading Vulnerability in SystemTap 1.3

CVE-2010-4171 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

The staprun runtime tool in SystemTap 1.3 does not verify that a module to unload was previously loaded by SystemTap, which allows local users to cause a denial of service (unloading of arbitrary kernel modules).

Learn more about our User Device Pen Test.