CVE-2010-4816

Exploit

EPSS 1.19%
Published 22.06.2021 14:15:08
Last modified 21.11.2024 01:21:50
Source secalert@redhat.com
Teams watchlist Login
Open Login

It was found in FreeBSD 8.0, 6.3 and 4.9, and OpenBSD 4.6 that a null pointer dereference in ftpd/popen.c may lead to remote denial of service of the ftpd service.

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Openbsd ≫ Openbsd Version4.6

Openbsd ≫ Openbsd Version4.9

Openbsd ≫ Openbsd Version6.3

Openbsd ≫ Openbsd Version8.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.19%	0.781

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=144761

Vendor Advisory

Exploit

Issue Tracking

https://seclists.org/fulldisclosure/2010/Mar/117

Third Party Advisory

Exploit

Mailing List

https://seclists.org/oss-sec/2011/q3/284

Third Party Advisory

Mailing List

https://nvd.nist.gov/vuln/detail/CVE-2010-4816

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-4816

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-4816

EUVD