Lucene search

[email protected]CVE-2010-0679

HistoryFeb 22, 2010 - 9:30 p.m.

CVE-2010-0679

2010-02-2221:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-0679

hyleoschemview

hlchemview

buffer overflow

activex control

nvd

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.76 High

EPSS

Percentile

98.2%

JSON

Multiple stack-based buffer overflows in the HyleosChemView.HLChemView ActiveX control (HyleosChemView.ocx) in Hyleos ChemView 1.9.5.1 allow remote attackers to execute arbitrary code via a large number of white space characters in the filename argument to the (1) SaveasMolFile and (2) ReadMolFile methods.

Affected configurations

NVD

Node

hyleoschemviewMatch1.9.5.1

CPENameOperatorVersion
hyleos:chemviewhyleos chemvieweq1.9.5.1

CPE	Name	Operator	Version
hyleos:chemview	hyleos chemview	eq	1.9.5.1

References

osvdb.org/62276

packetstormsecurity.org/1002-advisories/chemviewx-overflow.txt

packetstormsecurity.org/1002-exploits/hyleoschemview-heap.rb.txt

secunia.com/advisories/38523

www.exploit-db.com/exploits/11422

www.security-assessment.com/files/advisories/2010-02-11_ChemviewX_Activex.pdf

www.securityfocus.com/bid/38225

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.76 High

EPSS

Percentile

98.2%

JSON

Related for CVE-2010-0679

openvas2 cvelist1 packetstorm1 prion1 nvd1