{"id":"CVE-2010-4756","details":"The glob implementation in the GNU C Library (aka glibc or libc6) allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in STAT commands to an FTP daemon, a different vulnerability than CVE-2010-2632.","modified":"2026-04-10T03:41:33.009282Z","published":"2011-03-02T20:00:01Z","related":["CGA-pwxg-p6f4-p7p2"],"references":[{"type":"EVIDENCE","url":"http://cxib.net/stuff/glob-0day.c"},{"type":"EVIDENCE","url":"http://securityreason.com/achievement_securityalert/89"},{"type":"EVIDENCE","url":"http://securityreason.com/exploitalert/9223"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=681681"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4756"}],"schema_version":"1.7.5"}