Vulnerabilities > CVE-2010-4816 - NULL Pointer Dereference vulnerability in Openbsd

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

openbsd

CWE-476

NVD

Published: 2021-06-22

Updated: 2021-09-20

Summary

It was found in FreeBSD 8.0, 6.3 and 4.9, and OpenBSD 4.6 that a null pointer dereference in ftpd/popen.c may lead to remote denial of service of the ftpd service.

Vulnerable Configurations

Part	Description	Count
OS	Openbsd Openbsd Openbsd 4.6 Openbsd Openbsd 6.3 Openbsd Openbsd 4.9 Openbsd Openbsd 8.0	4

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://seclists.org/oss-sec/2011/q3/284
https://seclists.org/fulldisclosure/2010/Mar/117
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=144761