Lucene search

MitreCVE-2010-0688

HistoryMar 19, 2010 - 8:30 p.m.

CVE-2010-0688

2010-03-1920:30:00

CWE-119

mitre

web.nvd.nist.gov

cve-2010-0688

orbital viewer 1.04

buffer overflow

remote code execution

user-assisted

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.94

Percentile

99.2%

JSON

Stack-based buffer overflow in Orbital Viewer 1.04 allows user-assisted remote attackers to execute arbitrary code via a crafted (1) .orb or (2) .ov file.

Affected configurations

Nvd

Node

orbitalsorbital_viewerMatch1.04

VendorProductVersionCPE
orbitalsorbital_viewer1.04cpe:2.3:a:orbitals:orbital_viewer:1.04:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
orbitals	orbital_viewer	1.04	cpe:2.3:a:orbitals:orbital_viewer:1.04:::::::*

References

secunia.com/advisories/38720

www.corelan.be:8800/index.php/forum/security-advisories/corelan-10-011-orbital-viewer-orb-buffer-overflow/

www.exploit-db.com/exploits/13940

www.osvdb.org/62580

www.securityfocus.com/bid/38436

www.securityfocus.com/bid/40985

www.vupen.com/english/advisories/2010/0478

exchange.xforce.ibmcloud.com/vulnerabilities/59560

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.94

Percentile

99.2%

JSON

Related for CVE-2010-0688