关于 CVE-2010-0436 的漏洞信息

1. 漏洞描述
From NVD
Race condition in backend/ctrl.c in KDM in KDE Software Compilation (SC) 2.2.0 through 4.4.2 allows local users to change the permissions of arbitrary files, and consequently gain privileges, by blocking the removal of a certain directory that contains a control socket, related to improper interaction with ksm.
From 神龙GPT (AIGC)
在KDM( KDE软件编译(SC) 2.2.0 至 4.4.2)的后端/ctrl.c中,允许本地用户更改任意文件的权限,从而获取特权,通过阻止与ksm improper interaction相关的特定目录的删除来执行此操作。
2. 漏洞评分(CVSS)
From NVD
NVD 暂无评分
From 神龙GPT (AIGC)
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
3. 漏洞类别
From NVD
NVD 暂无漏洞类别信息
From 神龙GPT (AIGC)
神龙GPT 暂无漏洞类别信息(请耐心等待)
Reference