GNU libc glob(3) 'GLOB_LIMIT' Remote Denial Of Service Vulnerability
Gravité: : Élevé
Identifiant(s) CVE: : CVE-2010-2632
Date du conseil: 21 juillet 2015
Description
Unspecified vulnerability in the FTP Server in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable researcher that this is an issue in the glob implementation in libc that allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1004456
Trend Micro Deep Security DPI Rule Name: 1004456 - GNU libc glob(3) 'GLOB_LIMIT' Remote Denial Of Service Vulnerability
Affected software and version:
- Red Hat Linux
- SuSE Linux