Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-3717
HistoryOct 03, 2022 - 4:20 p.m.

CVE-2010-3717

2022-10-0316:20:55
CWE-264
[email protected]
web.nvd.nist.gov
44
typo3
validemail
denial of service
cve-2010-3717

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

Low

EPSS

0.078

Percentile

94.3%

JSON

The t3lib_div::validEmail function in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 does not properly restrict input to filter_var FILTER_VALIDATE_EMAIL operations in PHP, which allows remote attackers to cause a denial of service (memory consumption and application crash) via a long e-mail address string, a related issue to CVE-2010-3710.

Affected configurations

NVD
Node
typo3typo3Match4.2.0
OR
typo3typo3Match4.2.1
OR
typo3typo3Match4.2.2
OR
typo3typo3Match4.2.3
OR
typo3typo3Match4.2.4
OR
typo3typo3Match4.2.5
OR
typo3typo3Match4.2.6
OR
typo3typo3Match4.2.7
OR
typo3typo3Match4.2.8
OR
typo3typo3Match4.2.9
OR
typo3typo3Match4.2.10
OR
typo3typo3Match4.2.11
OR
typo3typo3Match4.2.12
OR
typo3typo3Match4.2.13
OR
typo3typo3Match4.2.14
OR
typo3typo3Match4.3.0
OR
typo3typo3Match4.3.1
OR
typo3typo3Match4.3.2
OR
typo3typo3Match4.3.3
OR
typo3typo3Match4.3.4
OR
typo3typo3Match4.3.5
OR
typo3typo3Match4.3.6
OR
typo3typo3Match4.4
OR
typo3typo3Match4.4.1
OR
typo3typo3Match4.4.2
OR
typo3typo3Match4.4.3
VendorProductVersionCPE
typo3typo34.2.3cpe:/a:typo3:typo3:4.2.3:::
typo3typo34.2.0cpe:/a:typo3:typo3:4.2.0:::
typo3typo34.2.12cpe:/a:typo3:typo3:4.2.12:::
typo3typo34.3.0cpe:/a:typo3:typo3:4.3.0:::
typo3typo34.3.5cpe:/a:typo3:typo3:4.3.5:::
typo3typo34.2.14cpe:/a:typo3:typo3:4.2.14:::
typo3typo34.2.10cpe:/a:typo3:typo3:4.2.10:::
typo3typo34.2.1cpe:/a:typo3:typo3:4.2.1:::
typo3typo34.3.1cpe:/a:typo3:typo3:4.3.1:::
typo3typo34.2.8cpe:/a:typo3:typo3:4.2.8:::
Rows per page:
1-10 of 261

Related

cvelist 2
ubuntucve 2
nvd 2
prion 2
debian 2
securityvulns 8
openvas 39
nessus 23
osv 2
cve 1
freebsd 1
redhat 1
oraclelinux 1
centos 1
ubuntu 1
fedora 6
f5 2
gentoo 1
cvelist
cvelist
CVE-2010-3717
2022-10-03 16:20:55
CVE-2010-3710
2010-10-25 19:00:00
ubuntucve
ubuntucve
CVE-2010-3717
2010-10-25 00:00:00
CVE-2010-3710
2010-10-25 00:00:00
nvd
nvd
CVE-2010-3717
2010-10-25 20:01:04
CVE-2010-3710
2010-10-25 20:01:03
prion
prion
Design/Logic Flaw
2010-10-25 20:01:00
Stack overflow
2010-10-25 20:01:00
debian
debian
[SECURITY] [DSA 2121-1] New TYPO3 packages fix several vulnerabilities
2010-10-19 20:07:09
[SECURITY] [DSA 2195-1] php5 security update
2011-03-19 23:49:52
securityvulns
securityvulns
[SECURITY] [DSA 2121-1] New TYPO3 packages fix several vulnerabilities
2010-10-24 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2010-10-24 00:00:00
[ MDVSA-2010:218 ] php
2010-11-02 00:00:00
openvas
openvas
Debian Security Advisory DSA 2121-1 (typo3-src)
2010-11-17 00:00:00
Debian: Security Advisory (DSA-2121-1)
2010-11-17 00:00:00
TYPO3 Multiple Vulnerabilities (Oct 2010)
2014-01-09 00:00:00
nessus
nessus
Debian DSA-2121-1 : typo3-src - several vulnerabilities
2010-10-20 00:00:00
FreeBSD : php-filter -- Denial of Service (c623f058-10e7-11e0-becc-0022156e8794)
2011-01-13 00:00:00
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 7221)
2010-12-03 00:00:00
osv
osv
typo3-src - several vulnerabilities
2010-10-19 00:00:00
php5 - several
2011-03-19 00:00:00
cve
cve
CVE-2010-3710
2010-10-25 20:01:03
freebsd
freebsd
php-filter -- Denial of Service
2010-12-13 00:00:00
redhat
redhat
(RHSA-2011:0196) Moderate: php53 security update
2011-02-03 00:00:00
oraclelinux
oraclelinux
php53 security update
2011-02-03 00:00:00
centos
centos
php53 security update
2011-04-14 23:48:18
ubuntu
ubuntu
PHP vulnerabilities
2011-01-11 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: maniadrive-1.2-23.fc13
2011-01-04 20:53:11
[SECURITY] Fedora 13 Update: php-eaccelerator-0.9.6.1-3.fc13
2011-01-04 20:53:11
[SECURITY] Fedora 14 Update: php-5.3.4-1.fc14.1
2011-01-04 20:55:36
f5
f5
K13519 : Multiple PHP vulnerabilities
2013-09-20 00:00:00
SOL13519 - Multiple PHP vulnerabilities
2012-04-04 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2011-10-10 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

Low

EPSS

0.078

Percentile

94.3%

JSON
Related for CVE-2010-3717
cvelist2ubuntucve2nvd2prion2debian2securityvulns8openvas39nessus23osv2cve1freebsd1redhat1oraclelinux1centos1ubuntu1fedora6f52gentoo1