Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2010-2265
HistoryJun 14, 2010 - 6:00 p.m.

CVE-2010-2265

2010-06-1418:00:00
mitre
www.cve.org
1

6 Medium

AI Score

Confidence

High

0.974 High

EPSS

Percentile

99.9%

JSON

Cross-site scripting (XSS) vulnerability in the GetServerName function in sysinfo/commonFunc.js in Microsoft Windows Help and Support Center for Windows XP and Windows Server 2003 allows remote attackers to inject arbitrary web script or HTML via the svr parameter to sysinfo/sysinfomain.htm. NOTE: this can be leveraged with CVE-2010-1885 to execute arbitrary commands without user interaction.

Related

openvas 4
nessus 2
cve 2
prion 2
nvd 2
canvas 1
saint 4
threatpost 6
securityvulns 2
packetstorm 2
cvelist 1
checkpoint_advisories 1
seebug 1
thn 1
openvas
openvas
MS Windows Help and Support Center Remote Code Execution Vulnerability
2010-06-11 00:00:00
Microsoft Windows Help and Support Center RCE Vulnerability
2010-06-11 00:00:00
Microsoft Help and Support Center Remote Code Execution Vulnerability (2229593)
2010-07-14 00:00:00
nessus
nessus
MS KB2219475: Windows Help Center hcp:// Protocol Handler Arbitrary Code Execution
2010-06-18 00:00:00
MS10-042: Vulnerability in Help and Support Center Could Allow Remote Code Execution (2229593)
2010-07-13 00:00:00
cve
cve
CVE-2010-2265
2010-06-15 14:04:24
CVE-2010-1885
2010-06-15 14:04:23
prion
prion
Cross site scripting
2010-06-15 14:04:00
Input validation
2010-06-15 14:04:00
nvd
nvd
CVE-2010-2265
2010-06-15 14:04:24
CVE-2010-1885
2010-06-15 14:04:23
canvas
canvas
Immunity Canvas: IE_HCP
2010-06-15 14:04:00
saint
saint
Windows Help and Support Center -FromHCP URL whitelist bypass
2010-06-15 00:00:00
Windows Help and Support Center -FromHCP URL whitelist bypass
2010-06-15 00:00:00
Windows Help and Support Center -FromHCP URL whitelist bypass
2010-06-15 00:00:00
threatpost
threatpost
Researchers Ponder When to Notify Users of Public Vulnerability Exploits
2013-10-02 10:04:52
Microsoft: 25,000 Computers Attacked With Latest Windows Zero Day
2010-07-14 16:25:37
Huge Increase Seen in Attacks on Windows Help Center Flaw
2010-07-01 11:15:39
securityvulns
securityvulns
Microsoft Security Bulletin MS10-042 - Critical Vulnerability in Help and Support Center Could Allow Remote Code Execution (2229593)
2010-07-14 00:00:00
Microsoft Windows Help and Support Center code execution
2010-07-14 00:00:00
packetstorm
packetstorm
Microsoft Help Center XSS and Command Execution
2010-07-14 00:00:00
Microsoft Help Center XSS and Command Execution
2010-06-15 00:00:00
cvelist
cvelist
CVE-2010-1885
2010-06-14 18:00:00
checkpoint_advisories
checkpoint_advisories
Internet Explorer Windows Help and Support Center Remote Code Execution (CVE-2010-1885)
2010-06-13 00:00:00
seebug
seebug
Microsoft Windows帮助和支持中心绕过白名单限制漏洞
2010-06-12 00:00:00
thn
thn
Phoenix Exploit's Kit 2.8 mini version
2011-10-12 17:41:00

6 Medium

AI Score

Confidence

High

0.974 High

EPSS

Percentile

99.9%

JSON
Related for CVELIST:CVE-2010-2265
openvas4nessus2cve2prion2nvd2canvas1saint4threatpost6securityvulns2packetstorm2cvelist1checkpoint_advisories1seebug1thn1