Lucene search

PRIOn knowledge basePRION:CVE-2010-2741

HistoryOct 13, 2010 - 7:00 p.m.

Design/Logic Flaw

2010-10-1319:00:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.449 Medium

EPSS

Percentile

97.3%

JSON

The OpenType Font (OTF) format driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 performs an incorrect integer calculation during font processing, which allows local users to gain privileges via a crafted application, aka “OpenType Font Validation Vulnerability.”

CPENameOperatorVersion
windows_xpeq sp2x64

CPE	Name	Operator	Version
	windows_xp	eq	sp2x64

References

support.avaya.com/css/P8/documents/100113218

www.us-cert.gov/cas/techalerts/TA10-285A.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-078

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6742

6.8 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.449 Medium

EPSS

Percentile

97.3%

JSON

Related for PRION:CVE-2010-2741