Lucene search

[email protected]CVE-2010-2361

HistoryAug 25, 2010 - 8:00 p.m.

CVE-2010-2361

2010-08-2520:00:17

CWE-20

[email protected]

web.nvd.nist.gov

cve-2010-2361

winny

vulnerability

bbs

ddos attack

remote attack vectors

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.7%

JSON

Winny 2.0b7.1 and earlier does not properly process BBS information, which has unspecified impact and remote attack vectors that might lead to use of the product’s host for DDoS attacks.

Affected configurations

NVD

Node

winnywinnyRange≤2.0b7.1

CPENameOperatorVersion
winny:winnywinnyle2.0b7.1

CPE	Name	Operator	Version
winny:winny	winny	le	2.0b7.1

References

jvn.jp/en/jp/JVN54336184/index.html

jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000027.html

exchange.xforce.ibmcloud.com/vulnerabilities/61278

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.7%

JSON

Related for CVE-2010-2361

prion1 jvn1 nvd1 cvelist1