Lucene search

[email protected]NVD:CVE-2010-0689

HistoryFeb 26, 2010 - 7:30 p.m.

CVE-2010-0689

2010-02-2619:30:00

[email protected]

web.nvd.nist.gov

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

87.0%

JSON

The ExecuteExe method in the DVBSExeCall Control ActiveX control 1.0.0.1 in DVBSExeCall.ocx in DATEV Base System (aka Grundpaket Basis) allows remote attackers to execute arbitrary commands via unspecified vectors.

Affected configurations

NVD

Node

datevbase_system

References

osvdb.org/62564

secunia.com/advisories/38716

sotiriu.de/adv/NSOADV-2010-003.txt

sotiriu.de/demos/videos/nso-2010-003.html

www.datev.de/info-db/1080162

www.securityfocus.com/archive/1/509743/100/0/threaded

www.securityfocus.com/bid/38415

www.vupen.com/english/advisories/2010/0474

exchange.xforce.ibmcloud.com/vulnerabilities/56530

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

87.0%

JSON

Related for NVD:CVE-2010-0689

securityvulns2 cve1 cvelist1 prion1