CVE-2010-2632

Name of the Vulnerable Software and Affected Versions Oracle Solaris versions 8 through 11 Express Juniper SRX 240 (affected versions not specified)

Description The issue allows remote attackers to affect availability, potentially causing a denial of service due to CPU and memory consumption. This can be achieved through crafted expressions that do not match any pathnames, possibly related to the glob implementation in libc. The vulnerability can also be exploited by any registered user with remote access to the device, leading to resource exhaustion, including memory fill-up and processor overload, by searching for a file using a specially crafted pattern in the console or command-line interface.

Recommendations For Oracle Solaris versions 8 through 11 Express, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Juniper SRX 240, at the moment, there is no information about a newer version that contains a fix for this vulnerability.