Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-1938
HistoryMay 28, 2010 - 6:30 p.m.

CVE-2010-1938

2010-05-2818:30:00
CWE-189
[email protected]
web.nvd.nist.gov
390
cve-2010-1938
off-by-one error
opie
remote attackers
denial of service
arbitrary code
freebsd

9.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.869 High

EPSS

Percentile

98.6%

JSON

Off-by-one error in the __opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long username, as demonstrated by a long USER command to the FreeBSD 8.0 ftpd.

Related

openvas 12
nessus 3
exploitpack 1
ubuntucve 1
checkpoint_advisories 2
freebsd_advisory 1
securityvulns 3
packetstorm 1
ubuntu 2
seebug 2
prion 1
exploitdb 1
debian 1
nmap 1
osv 1
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-10:05.opie.asc)
2010-06-03 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-10:05.opie.asc)
2010-06-03 00:00:00
FreeBSD Ports: FreeBSD
2010-11-17 00:00:00
nessus
nessus
Ubuntu 9.04 / 9.10 / 10.04 LTS : opie vulnerability (USN-955-1)
2013-03-09 00:00:00
Ubuntu 9.04 / 9.10 / 10.04 LTS : libpam-opie vulnerability (USN-955-2)
2010-06-22 00:00:00
Debian DSA-2281-1 : opie - several vulnerabilities
2011-07-22 00:00:00
exploitpack
exploitpack
FreeBSD 8.0 - ftpd (FreeBSD-SA-10:05) Off-By-One (PoC)
2010-05-27 00:00:00
ubuntucve
ubuntucve
CVE-2010-1938
2010-05-28 00:00:00
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against Multiple Vendors OPIE Off-by-one Stack Buffer Overflow Vulnerability
2010-06-03 00:00:00
Multiple Vendors OPIE Off-By-One Stack Buffer Overflow (CVE-2010-1938)
2010-07-25 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-10:05.opie
2010-05-27 00:00:00
securityvulns
securityvulns
FreeBSD OPIE library off-by-one overflow
2010-05-28 00:00:00
FreeBSD Security Advisory FreeBSD-SA-10:05.opie
2010-05-28 00:00:00
[SECURITY] [DSA 2281-1] opie security update
2011-07-26 00:00:00
packetstorm
packetstorm
FreeBSD 8.0 ftpd Off-By-One Proof Of Concept
2010-05-28 00:00:00
ubuntu
ubuntu
libpam-opie vulnerability
2010-06-21 00:00:00
OPIE vulnerability
2010-06-21 00:00:00
seebug
seebug
FreeBSD OPIE实现__opiereadrec()函数单字节栈溢出漏洞
2010-05-31 00:00:00
FreeBSD 8.0 ftpd off-by one PoC (FreeBSD-SA-10:05)
2010-05-28 00:00:00
prion
prion
Command injection
2010-05-28 18:30:00
exploitdb
exploitdb
FreeBSD 8.0 - 'ftpd' (FreeBSD-SA-10:05) Off-By-One (PoC)
2010-05-27 00:00:00
debian
debian
[SECURITY] [DSA 2281-1] opie security update
2011-07-21 11:09:17
nmap
nmap
ftp-libopie NSE Script
2010-06-21 20:25:11
osv
osv
opie - several
2011-07-21 00:00:00

9.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.869 High

EPSS

Percentile

98.6%

JSON
Related for CVE-2010-1938
openvas12nessus3exploitpack1ubuntucve1checkpoint_advisories2freebsd_advisory1securityvulns3packetstorm1ubuntu2seebug2prion1exploitdb1debian1nmap1osv1