Lucene search

K
cve[email protected]CVE-2010-2159
HistoryJun 08, 2010 - 12:30 a.m.

CVE-2010-2159

2010-06-0800:30:01
CWE-119
web.nvd.nist.gov
16
dameng dm
database server
remote authenticated users
denial of service
arbitrary code
memory corruption

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.026 Low

EPSS

Percentile

90.3%

Dameng DM Database Server allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors related to the SP_DEL_BAK_EXPIRED procedure in wdm_dll.dll, which triggers memory corruption.

Affected configurations

NVD
Node
damengdm_database_server

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.026 Low

EPSS

Percentile

90.3%

Related for CVE-2010-2159