CVE-2010-2265

🗓️ 14 Jun 2010 18:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov👁 73 Views🌐 WEB

CVE-2010-2265 Cross-site scripting vulnerability in Microsoft Windows Help and Support Center for Windows XP and Windows Server 200

Reporter	Title	Published	Views	Family All 7
Circl	CVE-2010-2265	10 Jun 201000:00	–	circl
Cvelist	CVE-2010-2265	14 Jun 201018:00	–	cvelist
NVD	CVE-2010-2265	15 Jun 201014:04	–	nvd
OpenVAS	Microsoft Windows Help and Support Center RCE Vulnerability	11 Jun 201000:00	–	openvas
OpenVAS	MS Windows Help and Support Center Remote Code Execution Vulnerability	11 Jun 201000:00	–	openvas
Prion	Cross site scripting	15 Jun 201014:04	–	prion
Tenable Nessus	MS KB2219475: Windows Help Center hcp:// Protocol Handler Arbitrary Code Execution	18 Jun 201000:00	–	nessus

NVD

Node

Source	Link
securityfocus	www.securityfocus.com/archive/1/511774/100/0/threaded
archives	www.archives.neohapsis.com/archives/fulldisclosure/2010-06/0197.html
microsoft	www.microsoft.com/technet/security/advisory/2219475.mspx
blogs	www.blogs.technet.com/b/srd/archive/2010/06/10/help-and-support-center-vulnerability-full-disclosure-posting.aspx
secunia	www.secunia.com/advisories/40076
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/59267
vupen	www.vupen.com/english/advisories/2010/1417
securityfocus	www.securityfocus.com/bid/40721
blogs	www.blogs.technet.com/b/msrc/archive/2010/06/10/windows-help-vulnerability-disclosure.aspx
kb	www.kb.cert.org/vuls/id/578319

Parameter	Position	Path	Description	CWE
svr	query param	sysinfo/sysinfomain.htm	XSS vulnerability in GetServerName via svr parameter in sysinfo/sysinfomain.htm.	CWE-79

29 Apr 2026 01:13Current

6.1Medium risk

Vulners AI Score6.1

CVSS 24.3

EPSS0.24813