Lucene search

[email protected]CVE-2010-0359

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-0359

2022-10-0316:21:12

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-0359

buffer overflow

sslv2

zeus web server

denial of service

remote attack

arbitrary code

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.4 High

AI Score

Confidence

High

0.288 Low

EPSS

Percentile

96.9%

JSON

Buffer overflow in the SSLv2 support in Zeus Web Server before 4.3r5 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long string in an invalid Client Hello message.

Affected configurations

NVD

Node

zeuszeus_web_serverMatch4.3r5

CPENameOperatorVersion
zeus:zeus_web_serverzeus zeus web servereq4.3r5

CPE	Name	Operator	Version
zeus:zeus_web_server	zeus zeus web server	eq	4.3r5

References

intevydis.blogspot.com/2010/01/zeus-web-server-ssl2clienthello.html

intevydis.com/vd-list.shtml

secunia.com/advisories/38056

securitytracker.com/id?1023465

support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES

support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released

www.osvdb.org/61699

www.securityfocus.com/bid/37829

www.vupen.com/english/advisories/2010/0147

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.4 High

AI Score

Confidence

High

0.288 Low

EPSS

Percentile

96.9%

JSON

Related for CVE-2010-0359

prion1 nvd1 cvelist1 openvas2