CVE-2010-4604

HIGH Year: 2010
CVSS v2 Score
7.2
High
Weakness Type
CWE-787
View all →

Vulnerability Description

Stack-based buffer overflow in the GeneratePassword function in dsmtca (aka the Trusted Communications Agent or TCA) in the backup-archive client in IBM Tivoli Storage Manager (TSM) 5.3.x before 5.3.6.10, 5.4.x before 5.4.3.4, 5.5.x before 5.5.2.10, and 6.1.x before 6.1.3.1 on Unix and Linux allows local users to gain privileges by specifying a long LANG environment variable, and then sending a request over a pipe.

Related Vulnerabilities

CVE-2016-9343

CRITICAL
CVSS:10.0(Critical)

An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 (excluding all firmware versions prior to FRN 16.00, which are not affected). By sen...

CWE-7872016

CVE-2017-2853

CRITICAL
CVSS:10.0(Critical)

An exploitable Code Execution vulnerability exists in the RequestForPatientInfoEEGfile functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow r...

CWE-7872017

CVE-2017-2868

CRITICAL
CVSS:10.0(Critical)

An exploitable code execution vulnerability exists in the NewProducerStream functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in...

CWE-7872017

CVE-2017-2869

CRITICAL
CVSS:10.0(Critical)

An exploitable code execution vulnerability exists in the OpenProducer functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in code...

CWE-7872017

CVE-2018-10718

CRITICAL
CVSS:10.0(Critical)

Stack-based buffer overflow in Activision Infinity Ward Call of Duty Modern Warfare 2 before 2018-04-26 allows remote attackers to execute arbitrary code via crafted packets.

CWE-7872018

CVE-2018-17160

CRITICAL
CVSS:10.0(Critical)

In FreeBSD before 11.2-STABLE(r341486) and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by bhyve can permit a guest operating system to overwrite memory in the bh...

CWE-7872018