[email protected]CVE-2010-2451

HistoryJun 29, 2010 - 6:30 p.m.

CVE-2010-2451

2010-06-2918:30:00

CWE-134

[email protected]

web.nvd.nist.gov

cve-2010-2451

multiple format string vulnerabilities

kvirc

dcc functionality

remote attack vectors

nvd

6.8 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.5%

JSON

Multiple format string vulnerabilities in the DCC functionality in KVIrc 3.4 and 4.0 have unspecified impact and remote attack vectors.

CPENameOperatorVersion
kvirc:kvirckvirceq3.4.0
kvirc:kvirckvirceq4.0

CPE	Name	Operator	Version
kvirc:kvirc	kvirc	eq	3.4.0
kvirc:kvirc	kvirc	eq	4.0

References

lists.fedoraproject.org/pipermail/package-announce/2010-June/043601.html

lists.fedoraproject.org/pipermail/package-announce/2010-June/043629.html

lists.omnikron.net/pipermail/kvirc/2010-May/000867.html

lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html

secunia.com/advisories/32410

secunia.com/advisories/40349

www.debian.org/security/2010/dsa-2065

www.securityfocus.com/bid/40746

www.vupen.com/english/advisories/2010/1602

6.8 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.5%

JSON

Related for CVE-2010-2451

prion2 ubuntucve2 debiancve2 nessus8 openvas9 securityvulns2 fedora2 freebsd1 debian1 gentoo1 cve1