Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4
CVSSv2

CVE-2010-4756

Published: 02/03/2011 Updated: 01/09/2021
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
VMScore: 357
Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Subscribe to Gnu

Vulnerability Summary

The glob implementation in the GNU C Library (aka glibc or libc6) allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in STAT commands to an FTP daemon, a different vulnerability than CVE-2010-2632.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

gnu glibc

Exploits

Exploit DB: Multiple Vendors libc/glob(3) GLOB_BRACE|GLOB_LIMIT Memory Exhaustion
Multiple vendors are affected by a memory exhaustion vulnerability in libc/glob(3) GLOB_BRACE|GLOB_LIMIT ...

Github Repositories

https://github.com/puerco/vexi

A container image vex data distiller

VEXi - A (Wolfi-based) Container Image VEX Generator VEXi (short for VEX-Image) is a command line tool that generates OpenVEX documents for container images based on the Wolfi Linux (un)distribution To generate the VEX (Vulnerability Exploitability eXchange) data, VEXi looks in the registry for SBOMs (Software Bill of Materials) attached to the container image U

https://github.com/gatecheckdev/gatecheck

Gatecheck CI/CD Validation Tool

Gatecheck Gatecheck automates report validation in a CI/CD Pipeline by comparing security findings to a pre-determined thresholds It also provides report aggregation, artifact integrity, and deployment validation Gatecheck is stateless so self-hosting and provisioning servers is not required Upcoming Features The CLI is currently going through a much needed refactor Onc

References

CWE-399http://securityreason.com/exploitalert/9223http://cxib.net/stuff/glob-0day.chttp://securityreason.com/achievement_securityalert/89https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4756https://bugzilla.redhat.com/show_bug.cgi?id=681681https://nvd.nist.govhttps://github.com/puerco/vexihttps://packetstormsecurity.com/files/101052/Multiple-Vendors-libc-glob-3-GLOB_BRACE-GLOB_LIMIT-Memory-Exhaustion.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700CVE-2022-48689CVE-2024-27956CVE-2023-6363SQLNULL pointer dereferenceCVE-2023-41830CVE-2015-2051arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook