Lucene search

[email protected]CVE-2010-1686

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-1686

2022-10-0316:21:02

CWE-119

[email protected]

web.nvd.nist.gov

cve

2010

1686

stack-based buffer overflow

urgent backup

abc backup

remote code execution

zip archive

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.035 Low

EPSS

Percentile

91.7%

JSON

Stack-based buffer overflow in (1) Urgent Backup 3.20, and (2) ABC Backup Pro 5.20 and ABC Backup 5.50, allows user-assisted remote attackers to execute arbitrary code via a crafted ZIP archive.

Affected configurations

NVD

Node

abcbackupabc_backupMatch5.20-pro

abcbackupabc_backupMatch5.50

Node

internet-softurgent_backupMatch3.20

CPENameOperatorVersion
abcbackup:abc_backupabcbackup abc backupeq5.20
abcbackup:abc_backupabcbackup abc backupeq5.50

CPE	Name	Operator	Version
abcbackup:abc_backup	abcbackup abc backup	eq	5.20
abcbackup:abc_backup	abcbackup abc backup	eq	5.50

References

secunia.com/advisories/39699

secunia.com/advisories/39701

www.corelan.be:8800/advisories.php?id=CORELAN-10-034

www.vupen.com/english/advisories/2010/1046

www.vupen.com/english/advisories/2010/1047

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.035 Low

EPSS

Percentile

91.7%

JSON

Related for CVE-2010-1686

nvd1 prion1 cvelist1