CVE-2010-4807

Published: May 26, 2011Modified: Apr 29, 2026

3.5

Vector

AV:N/AC:M/Au:S/C:N/I:N/A:P

Exploitability: 6.8 / Impact: 2.9

Source: NVD

Description

Race condition in IBM Web Content Manager (WCM) 7.0.0.1 before CF003 allows remote authenticated users to cause a denial of service (infinite recursive query) via unspecified vectors, related to a StackOverflowError exception.

Affected (2)

Products: Ibm: Web Content Manager

Ibm

1 product

Web Content Manager

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Ibm Web Content Manager	Version 7.0.0.1
Ibm Web Content Manager	Version 7.0.0.1 cf002

Related CWEs

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

References (4)

http://www-01.ibm.com/support/docview.wss?uid=swg1PM36141

Source: cve@mitre.org

http://www.ibm.com/support/docview.wss?uid=swg24029452

Source: cve@mitre.org

http://www-01.ibm.com/support/docview.wss?uid=swg1PM36141

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ibm.com/support/docview.wss?uid=swg24029452

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.