Lucene search

[email protected]CVE-2010-2362

HistoryAug 25, 2010 - 8:00 p.m.

CVE-2010-2362

2010-08-2520:00:17

CWE-20

[email protected]

web.nvd.nist.gov

cve-2010-2362

winny

processing vulnerability

remote attack

ddos

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.7%

JSON

Winny 2.0b7.1 and earlier does not properly process node information, which has unspecified impact and remote attack vectors that might lead to use of the product’s host for DDoS attacks.

Affected configurations

NVD

Node

winnywinnyRange≤2.0b7.1

CPENameOperatorVersion
winny:winnywinnyle2.0b7.1

CPE	Name	Operator	Version
winny:winny	winny	le	2.0b7.1

References

jvn.jp/en/jp/JVN25393522/index.html

jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000028.html

exchange.xforce.ibmcloud.com/vulnerabilities/61277

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.7%

JSON

Related for CVE-2010-2362

prion1 jvn1 cvelist1 nvd1