NVD

Id
15992  
Name
CVE-2010-4754  
Description
The glob implementation in libc in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, and OpenBSD 4.7, and Libsystem in Apple Mac OS X before 10.6.8, allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in STAT commands to an FTP daemon, a different vulnerability than CVE-2010-2632.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:N/I:N/A:P)  
Pub Date
2017-01-18  
Published
2011-03-02  
Modified Date
2011-09-21  
Seq
2010-4754  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
90528 15992 CVE-2010-4754 http://cvsweb.netbsd.org/cgi-bin/cvsweb.cgi/src/lib/libc/gen/glob.3#rev1.30.12.1  View
90529 15992 CVE-2010-4754 http://cvsweb.netbsd.org/cgi-bin/cvsweb.cgi/src/lib/libc/gen/glob.c#rev1.18.10.1  View
90530 15992 CVE-2010-4754 http://cxib.net/stuff/glob-0day.c  View
90531 15992 CVE-2010-4754 NetBSD-SA2010-008  View
90532 15992 CVE-2010-4754 APPLE-SA-2011-06-23-1  View
90533 15992 CVE-2010-4754 20101007 Multiple Vendors libc/glob(3) resource exhaustion (+0day remote ftpd-anon)  View
90534 15992 CVE-2010-4754 http://securityreason.com/exploitalert/9223  View
90535 15992 CVE-2010-4754 8116  View
90536 15992 CVE-2010-4754 http://support.apple.com/kb/HT4723  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
33731 JVNDB-2011-003973 FreeBSD などで使用される libc の glob 実装におけるサービス運用妨害 (DoS) の脆弱性 FreeBSD、NetBSD、OpenBSD などで使用される libc および Apple Mac OS X の Libsystem には、サービス運用妨害 (CPU およびメモリ破損) 状態となる脆弱性が存在します。 CVE-2010-4754 47334 CVE-2010-4754 15992 4 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-003973.html 2011-03-02 2012-03-27 View