Lucene search

K
cve[email protected]CVE-2010-1223
HistoryApr 07, 2010 - 3:30 p.m.

CVE-2010-1223

2010-04-0715:30:00
CWE-119
web.nvd.nist.gov
25
ca xosoft
buffer overflow
remote attack
arbitrary code execution
cve-2010-1223
nvd

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.92 High

EPSS

Percentile

98.9%

Multiple buffer overflows in CA XOsoft r12.0 and r12.5 allow remote attackers to execute arbitrary code via (1) a malformed request to the ws_man/xosoapapi.asmx SOAP endpoint or (2) a long string to the entry_point.aspx service.

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.92 High

EPSS

Percentile

98.9%

Related for CVE-2010-1223