CVE-2010-1039

NONE EPSS 97.1%
Published May 20, 201016y ago · Modified Jun 16, 20262w ago
Find Similar
Published May 20, 2010 16y ago
Last Modified Jun 16, 2026 2w ago

Description

Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name.

Threat Intelligence

EPSS Exploit Probability
97.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-134

Affected Products 45

VendorProductVersionRange
hpnfs\/oncplus* ≤b.11.31_09
hphp-uxb.11.11any
hphp-uxb.11.23any
hphp-uxb.11.31any
ibmaix* ≤5.3
ibmaix1.2.1any
ibmaix1.3any
ibmaix2.2.1any
ibmaix3.1any
ibmaix3.2any
ibmaix3.2.0any
ibmaix3.2.4any
ibmaix3.2.5any
ibmaix4any
ibmaix4.0any
ibmaix4.1any
ibmaix4.1.1any
ibmaix4.1.2any
ibmaix4.1.3any
ibmaix4.1.4any
ibmaix4.1.5any
ibmaix4.2any
ibmaix4.2.0any
ibmaix4.2.1any
ibmaix4.2.1.12any
ibmaix4.3any
ibmaix4.3.0any
ibmaix4.3.1any
ibmaix4.3.2any
ibmaix4.3.3any
ibmaix5.1any
ibmaix5.1.0.10any
ibmaix5.1lany
ibmaix5.2any
ibmaix5.2.0any
ibmaix5.2.0.50any
ibmaix5.2.0.54any
ibmaix5.2.2any
ibmaix5.2_lany
ibmaix6.1any
ibmaix430any
ibmvios* ≤1.5
ibmvios1.4any
ibmvios2.1any
sgiirix6.5any

References 26

  • aix.software.ibm.com http://aix.software.ibm.com/aix/efixes/security/pcnfsd_advisory.asc
  • marc.info http://marc.info/?l=bugtraq&m=127428077629933&w=2
    Vendor Advisory
  • osvdb.org http://osvdb.org/64729
  • secunia.com http://secunia.com/advisories/39835
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/39911
  • securitytracker.com http://securitytracker.com/id?1024016
  • checkpoint.com http://www.checkpoint.com/defense/advisories/public/2010/cpai-13-May.html
  • ibm.com http://www.ibm.com/support/docview.wss?uid=isg1IZ73590
  • ibm.com http://www.ibm.com/support/docview.wss?uid=isg1IZ73599
  • ibm.com http://www.ibm.com/support/docview.wss?uid=isg1IZ73681
  • ibm.com http://www.ibm.com/support/docview.wss?uid=isg1IZ73757
  • ibm.com http://www.ibm.com/support/docview.wss?uid=isg1IZ73874
  • ibm.com http://www.ibm.com/support/docview.wss?uid=isg1IZ75369
  • ibm.com http://www.ibm.com/support/docview.wss?uid=isg1IZ75440
  • ibm.com http://www.ibm.com/support/docview.wss?uid=isg1IZ75465
  • securityfocus.com http://www.securityfocus.com/archive/1/511405/100/0/threaded
  • securityfocus.com http://www.securityfocus.com/bid/40248
    Patch
  • securitytracker.com http://www.securitytracker.com/id?1023994
  • vupen.com http://www.vupen.com/english/advisories/2010/1199
    Vendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2010/1211
    Vendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2010/1212
    Vendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2010/1213
    Vendor Advisory
  • www14.software.ibm.com http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=5088
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/58718
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11986
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12103

Remediation