GNU libc glob(3) 'GLOB_LIMIT' Remote Denial Of Service Vulnerability
Severity: HIGH
CVE Identifier: CVE-2010-2632
Advisory Date: JUL 21, 2015
DESCRIPTION
Unspecified vulnerability in the FTP Server in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable researcher that this is an issue in the glob implementation in libc that allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004456
Trend Micro Deep Security DPI Rule Name: 1004456 - GNU libc glob(3) 'GLOB_LIMIT' Remote Denial Of Service Vulnerability
AFFECTED SOFTWARE AND VERSION
- Red Hat Linux
- SuSE Linux