CVE-2010-3187

Public Exploit

Description

Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote attackers to execute arbitrary code via a long NLST command.

Link	Tags
http://securitytracker.com/id?1024368	vdb entry third party advisory
http://www.ibm.com/support/docview.wss?uid=isg1IZ83276	vendor advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11697	vdb entry third party advisory signature
http://www.exploit-db.com/exploits/14456/	exploit vdb entry third party advisory
http://www.exploit-db.com/exploits/14409/	exploit vdb entry third party advisory
http://www.osvdb.org/66576	vdb entry broken link
http://www.ibm.com/support/docview.wss?uid=isg1IZ83274	vendor advisory
http://www.ibm.com/support/docview.wss?uid=isg1IZ83252	vendor advisory
http://www.ibm.com/support/docview.wss?uid=isg1IZ83275	vendor advisory
http://seclists.org/fulldisclosure/2010/Jul/324	mailing list exploit third party advisory
http://seclists.org/fulldisclosure/2010/Jul/337	third party advisory mailing list
http://aix.software.ibm.com/aix/efixes/security/ftpd_advisory.asc	patch vendor advisory
http://seclists.org/fulldisclosure/2010/Jul/281	mailing list exploit third party advisory
http://seclists.org/fulldisclosure/2010/Jul/317	mailing list exploit third party advisory

What is the severity of CVE-2010-3187?: CVE-2010-3187 has been scored as a critical severity vulnerability.
How to fix CVE-2010-3187?: To fix CVE-2010-3187, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2010-3187 being actively exploited in the wild?: It is possible that CVE-2010-3187 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~80% probability that this vulnerability will be exploited by malicious actors in the next 30 days.