CVE-2010-4435

N/A Unknown

Published: January 19, 2011 Modified: April 29, 2026

Description

Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote attackers to affect confidentiality, integrity, and availability, related to CDE Calendar Manager Service Daemon and RPC. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from other software vendors that this affects other operating systems, such as HP-UX, or claims from a reliable third party that this is a buffer overflow in rpc.cmsd via long XDR-encoded ASCII strings in RPC call 10.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://aix.software.ibm.com/aix/efixes/security/cmsd_advisory.asc

Source: secalert_us@oracle.com

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02702395

Source: secalert_us@oracle.com

http://osvdb.org/70569

Source: secalert_us@oracle.com

http://secunia.com/advisories/42984

Source: secalert_us@oracle.com

Vendor Advisory

http://secunia.com/advisories/43258

Source: secalert_us@oracle.com

Vendor Advisory

http://securityreason.com/securityalert/8069

Source: secalert_us@oracle.com

http://www.exploit-db.com/exploits/16137

Source: secalert_us@oracle.com

Exploit

http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html

Source: secalert_us@oracle.com

Vendor Advisory

http://www.securityfocus.com/archive/1/516284/100/0/threaded

Source: secalert_us@oracle.com

http://www.securityfocus.com/archive/1/516304/100/0/threaded

Source: secalert_us@oracle.com

http://www.securityfocus.com/bid/45853

Source: secalert_us@oracle.com

http://www.securityfocus.com/bid/46261

Source: secalert_us@oracle.com

http://www.securitytracker.com/id?1024975

Source: secalert_us@oracle.com

http://www.vupen.com/english/advisories/2011/0151

Source: secalert_us@oracle.com

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0352

Source: secalert_us@oracle.com

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-11-062/

Source: secalert_us@oracle.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/64797

Source: secalert_us@oracle.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12794

Source: secalert_us@oracle.com

http://aix.software.ibm.com/aix/efixes/security/cmsd_advisory.asc

Source: af854a3a-2127-422b-91ae-364da2661108

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02702395

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/70569

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/42984

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/43258

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securityreason.com/securityalert/8069

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.exploit-db.com/exploits/16137

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/archive/1/516284/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/516304/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/45853

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/46261

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1024975

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2011/0151

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0352

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-11-062/

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/64797

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12794

Source: af854a3a-2127-422b-91ae-364da2661108

36 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

14.2%

96th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

sun