CVE-2010-3187
AIX5l with FTP-Server - Hash Disclosure
Severity Score
10.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
7
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote attackers to execute arbitrary code via a long NLST command.
Desbordamiento de buffer en ftpd de IBM AIX v5.3 y versiones anteriores. Permite a atacantes remotos ejecutar código de su elección a través de un comando NLST extenso.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2010-07-18 First Exploit
- 2010-08-30 CVE Reserved
- 2010-08-30 CVE Published
- 2024-08-07 CVE Updated
- 2024-10-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (16)
URL | Tag | Source |
---|---|---|
http://seclists.org/fulldisclosure/2010/Jul/337 | Mailing List | |
http://securitytracker.com/id?1024368 | Third Party Advisory | |
http://www.osvdb.org/66576 | Broken Link | |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11697 | Signature |
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/14409 | 2010-07-18 | |
https://www.exploit-db.com/exploits/14456 | 2010-07-24 | |
http://seclists.org/fulldisclosure/2010/Jul/281 | 2024-08-07 | |
http://seclists.org/fulldisclosure/2010/Jul/317 | 2024-08-07 | |
http://seclists.org/fulldisclosure/2010/Jul/324 | 2024-08-07 | |
http://www.exploit-db.com/exploits/14409 | 2024-08-07 | |
http://www.exploit-db.com/exploits/14456 | 2024-08-07 |
URL | Date | SRC |
---|---|---|
http://aix.software.ibm.com/aix/efixes/security/ftpd_advisory.asc | 2018-11-28 |
URL | Date | SRC |
---|---|---|
http://www.ibm.com/support/docview.wss?uid=isg1IZ83252 | 2018-11-28 | |
http://www.ibm.com/support/docview.wss?uid=isg1IZ83274 | 2018-11-28 | |
http://www.ibm.com/support/docview.wss?uid=isg1IZ83275 | 2018-11-28 | |
http://www.ibm.com/support/docview.wss?uid=isg1IZ83276 | 2018-11-28 |