Lucene search

[email protected]CVE-2010-3157

HistoryOct 03, 2022 - 4:20 p.m.

CVE-2010-3157

2022-10-0316:20:56

[email protected]

web.nvd.nist.gov

cve-2010-3157

xacrett

vulnerability

arbitrary code

windows explorer

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.5%

JSON

Untrusted search path vulnerability in XacRett before 50 allows attackers to execute arbitrary code via a Trojan horse executable file, related to the explorer.exe filename and use of Windows Explorer.

Affected configurations

NVD

Node

kmonosxacrettRange≤49

CPENameOperatorVersion
kmonos:xacrettkmonos xacrettle49

CPE	Name	Operator	Version
kmonos:xacrett	kmonos xacrett	le	49

References

jvn.jp/jp/JVN04665167/index.html

jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000040.html

secunia.com/advisories/41850

www.kmonos.net/lib/info/xacr49-vul.ja.html

www.securityfocus.com/bid/44125

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.5%

JSON

Related for CVE-2010-3157

cvelist1 nvd1 jvn1 prion1