VDB
CVE-2010-1937
CVE-2010-1937
PUBLISHED
CVSS 10 CRITICAL
Heap-based buffer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB before 1.3.8 might allow remote attackers to execute arbitrary code via a Content-Length HTTP header that specifies a value too small for the amount of POST data, aka bug #3001896.
EPSS 6.31% · 91.1th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
6.31%
91.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| standards_based_linux_instrumentation | sblim-sfcb | 1.3.5, 1.3.4, 0 |
Timeline
- Jun 14, 2010 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
References
- http://sblim.cvs.sourceforge.net/viewvc/sblim/sfcb/httpAdapter.c?r1=1.84&r2=1.85 url
- http://sourceforge.net/tracker/index.php?func=detail&aid=3001896&group_id=128809&atid=712784 url
- 40018 third-party-advisory
- ADV-2010-1312 vdb
- [oss-security] 20100601 SFCB vulnerabilities mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2010-1937 advisory