Lucene search
HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-0362
zeus web server
4.3r5
cve-2010-0362
dns request
spoofing
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.8 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
46.4%
Zeus Web Server before 4.3r5 does not use random transaction IDs for DNS requests, which makes it easier for remote attackers to spoof DNS responses.
Affected configurations
Node
zeuszeus_web_serverRange≤4.3r4
ORzeuszeus_web_serverMatch3.3
ORzeuszeus_web_serverMatch3.3.1
ORzeuszeus_web_serverMatch3.3.2
ORzeuszeus_web_serverMatch3.3.3
ORzeuszeus_web_serverMatch3.3.4
ORzeuszeus_web_serverMatch3.3.5
ORzeuszeus_web_serverMatch3.3.6
ORzeuszeus_web_serverMatch3.3.7
ORzeuszeus_web_serverMatch3.3.8
ORzeuszeus_web_serverMatch3.4
ORzeuszeus_web_serverMatch4.1
ORzeuszeus_web_serverMatch4.1r1
ORzeuszeus_web_serverMatch4.2
ORzeuszeus_web_serverMatch4.2r2
ORzeuszeus_web_serverMatch4.3
ORzeuszeus_web_serverMatch4.3r3
Related
prion
prion
Code injection
2010-01-20 16:30:00
nvd
nvd
CVE-2010-0362
2010-01-20 16:30:00
cvelist
cvelist
CVE-2010-0362
2022-10-03 16:21:13
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.8 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
46.4%
Related for CVE-2010-0362