Lucene search

[email protected]NVD:CVE-2010-3270

HistoryFeb 02, 2011 - 11:00 p.m.

CVE-2010-3270

2011-02-0223:00:32

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

MULTIPLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:M/C:C/I:C/A:C

AI Score

7.6

Confidence

High

EPSS

0.017

Percentile

87.9%

JSON

Stack-based buffer overflow in Cisco WebEx Meeting Center T27LB before SP21 EP3 and T27LC before SP22 allows user-assisted remote authenticated users to execute arbitrary code by providing a crafted .atp file and then disconnecting from a meeting. NOTE: since this is a site-specific issue with no expected action for consumers, it might be REJECTed.

Affected configurations

Nvd

Node

ciscowebex_meeting_centerMatch27.0

References

securitytracker.com/id?1025015

tools.cisco.com/security/center/viewAlert.x?alertId=22355

www.coresecurity.com/content/webex-atp-and-wrf-overflow-vulnerabilities

www.securityfocus.com/archive/1/516095/100/0/threaded

www.securityfocus.com/bid/46078

www.vupen.com/english/advisories/2011/0260

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

MULTIPLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:M/C:C/I:C/A:C

AI Score

7.6

Confidence

High

EPSS

0.017

Percentile

87.9%

JSON

Related for NVD:CVE-2010-3270

cve1 cvelist1 prion1 securityvulns2