Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2010-1938
HistoryMay 28, 2010 - 12:00 a.m.

CVE-2010-1938

2010-05-2800:00:00
ubuntu.com
ubuntu.com
27

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.869 High

EPSS

Percentile

98.6%

JSON

Off-by-one error in the __opiereadrec function in readrec.c in libopie in
OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE
and other platforms, allows remote attackers to cause a denial of service
(daemon crash) or possibly execute arbitrary code via a long username, as
demonstrated by a long USER command to the FreeBSD 8.0 ftpd.

Bugs

Notes

Author Note
mdeslaur in dapper and hardy, the off-by-one overflows into *c, which isn’t used after in the function, so it’s harmless. on jaunty+, fortify source makes opie abort, so it is a denial of service.
OSVersionArchitecturePackageVersionFilename
ubuntu9.04noarchopie< 2.40~dfsg-0ubuntu1.9.04.1UNKNOWN
ubuntu9.10noarchopie< 2.40~dfsg-0ubuntu1.9.10.1UNKNOWN
ubuntu10.04noarchopie< 2.40~dfsg-0ubuntu1.10.04.1UNKNOWN

Related

checkpoint_advisories 2
openvas 12
freebsd_advisory 1
cve 1
seebug 2
nessus 3
securityvulns 3
prion 1
ubuntu 2
exploitpack 1
packetstorm 1
exploitdb 1
nmap 1
osv 1
debian 1
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against Multiple Vendors OPIE Off-by-one Stack Buffer Overflow Vulnerability
2010-06-03 00:00:00
Multiple Vendors OPIE Off-By-One Stack Buffer Overflow (CVE-2010-1938)
2010-07-25 00:00:00
openvas
openvas
FreeBSD Ports: FreeBSD
2010-11-17 00:00:00
Nmap NSE net: ftp-libopie
2011-06-01 00:00:00
Nmap NSE net: ftp-libopie
2011-06-01 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-10:05.opie
2010-05-27 00:00:00
cve
cve
CVE-2010-1938
2010-05-28 18:30:00
seebug
seebug
FreeBSD OPIE实现__opiereadrec()函数单字节栈溢出漏洞
2010-05-31 00:00:00
FreeBSD 8.0 ftpd off-by one PoC (FreeBSD-SA-10:05)
2010-05-28 00:00:00
nessus
nessus
Ubuntu 9.04 / 9.10 / 10.04 LTS : libpam-opie vulnerability (USN-955-2)
2010-06-22 00:00:00
Ubuntu 9.04 / 9.10 / 10.04 LTS : opie vulnerability (USN-955-1)
2013-03-09 00:00:00
Debian DSA-2281-1 : opie - several vulnerabilities
2011-07-22 00:00:00
securityvulns
securityvulns
FreeBSD Security Advisory FreeBSD-SA-10:05.opie
2010-05-28 00:00:00
FreeBSD OPIE library off-by-one overflow
2010-05-28 00:00:00
[SECURITY] [DSA 2281-1] opie security update
2011-07-26 00:00:00
prion
prion
Command injection
2010-05-28 18:30:00
ubuntu
ubuntu
OPIE vulnerability
2010-06-21 00:00:00
libpam-opie vulnerability
2010-06-21 00:00:00
exploitpack
exploitpack
FreeBSD 8.0 - ftpd (FreeBSD-SA-10:05) Off-By-One (PoC)
2010-05-27 00:00:00
packetstorm
packetstorm
FreeBSD 8.0 ftpd Off-By-One Proof Of Concept
2010-05-28 00:00:00
exploitdb
exploitdb
FreeBSD 8.0 - &#039;ftpd&#039; (FreeBSD-SA-10:05) Off-By-One (PoC)
2010-05-27 00:00:00
nmap
nmap
ftp-libopie NSE Script
2010-06-21 20:25:11
osv
osv
opie - several
2011-07-21 00:00:00
debian
debian
[SECURITY] [DSA 2281-1] opie security update
2011-07-21 11:09:17

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.869 High

EPSS

Percentile

98.6%

JSON
Related for UB:CVE-2010-1938
checkpoint_advisories2openvas12freebsd_advisory1cve1seebug2nessus3securityvulns3prion1ubuntu2exploitpack1packetstorm1exploitdb1nmap1osv1debian1