[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2010-1039

Date: (C)2010-05-20   (M)2017-09-22
 
CVSS Score: 10.0Access Vector: NETWORK
Exploitability Subscore: 10.0Access Complexity: LOW
Impact Subscore: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE











Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name.

Reference:
SECTRACK-1023994
SECTRACK-1024016
http://www.securityfocus.com/archive/1/archive/1/511405/100/0/threaded
SECUNIA-39835
SECUNIA-39911
BID-40248
OSVDB-64729
ADV-2010-1199
ADV-2010-1211
ADV-2010-1212
ADV-2010-1213
HPSBUX02523
IAVM:2010-A-0073
IZ73590
IZ73599
IZ73681
IZ73757
IZ73874
IZ75369
IZ75440
IZ75465
SSRT100036
hpux-nfsoncplus-privilege-escalation(58718)
http://aix.software.ibm.com/aix/efixes/security/pcnfsd_advisory.asc
http://www.checkpoint.com/defense/advisories/public/2010/cpai-13-May.html
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=5088

CPE    41
cpe:/o:ibm:aix:2.2.1
cpe:/a:ibm:vios:2.1
cpe:/o:ibm:aix:5.1.0.10
cpe:/o:ibm:aix:1.2.1
...
CWE    1
CWE-134
OVAL    1
oval:org.secpod.oval:def:1100043

© 2013 SecPod Technologies