CVE-2010-2632

HIGH
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Unspecified vulnerability in the FTP Server in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable researcher that this is an issue in the glob implementation in libc that allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames.

References

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10598

http://secunia.com/advisories/42984

http://secunia.com/advisories/43433

http://secunia.com/advisories/55212

http://securityreason.com/achievement_securityalert/89

http://securityreason.com/achievement_securityalert/97

http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html

http://www.securitytracker.com/id?1024975

http://www.vupen.com/english/advisories/2011/0151

https://exchange.xforce.ibmcloud.com/vulnerabilities/64798

https://support.avaya.com/css/P8/documents/100127892

Details

Source: MITRE

Published: 2011-01-19

Updated: 2017-08-17

Risk Information

CVSS v2

Base Score: 7.8

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 10

Severity: HIGH

Tenable Plugins

View all (8 total)

IDNameProductFamilySeverity
70481Juniper Junos GNU libc glob Remote DoS (JSA10598)NessusJunos Local Security Checks
medium
64791FreeBSD : FreeBSD -- glob(3) related resource exhaustion (3c90e093-7c6e-11e2-809b-6c626d99876c)NessusFreeBSD Local Security Checks
high
55416Mac OS X 10.6.x < 10.6.8 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
55415Mac OS X Multiple Vulnerabilities (Security Update 2011-004)NessusMacOS X Local Security Checks
high
800790Mac OS X 10.6 < 10.6.8 Multiple VulnerabilitiesLog Correlation EngineOperating System Detection
high
5968Mac OS X 10.6 < 10.6.8 Multiple VulnerabilitiesNessus Network MonitorGeneric
critical
13605Solaris 9 (x86) : 114565-16NessusSolaris Local Security Checks
high
13555Solaris 9 (sparc) : 114564-16NessusSolaris Local Security Checks
high