Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-3920
HistoryDec 08, 2010 - 8:00 p.m.

CVE-2010-3920

2010-12-0820:00:01
CWE-264
[email protected]
web.nvd.nist.gov
22
epson
printer
driver
weak permissions
seiko
cve-2010-3920

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The Seiko Epson printer driver installers for LP-S9000 before 4.1.11 and LP-S7100 before 4.1.7, or as downloaded from the vendor between May 2010 and 20101125, set weak permissions for the “C:\Program Files” folder, which might allow local users to bypass intended access restrictions and create or modify arbitrary files and directories.

Affected configurations

NVD
Node
epsonlp-s7100
AND
epsonlp-s7100_driver_4.1.0
OR
epsonlp-s7100_driver_4.1.7
Node
epsonlp-s9000
AND
epsonlp-s9000_driver_4.1.0
OR
epsonlp-s9000_driver_4.1.11

Related

cvelist 1
nvd 1
jvn 1
prion 1
cvelist
cvelist
CVE-2010-3920
2010-12-08 19:00:00
nvd
nvd
CVE-2010-3920
2010-12-08 20:00:01
jvn
jvn
JVN#62736872: Vulnerability in Epson printer driver installer where access permissions are changed
2010-12-08 00:00:00
prion
prion
Design/Logic Flaw
2010-12-08 20:00:00

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVE-2010-3920
cvelist1nvd1jvn1prion1