Lucene search

[email protected]CVE-2010-1577

HistoryJul 28, 2010 - 12:48 p.m.

CVE-2010-1577

2010-07-2812:48:52

CWE-22

[email protected]

web.nvd.nist.gov

cve-2010-1577

directory traversal

cisco

internet streamer

content delivery system

cds

vulnerability

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

77.9%

JSON

Directory traversal vulnerability in Cisco Internet Streamer, as used in Cisco Content Delivery System (CDS) 2.2.x, 2.3.x, 2.4.x, and 2.5.x before 2.5.7 allows remote attackers to read arbitrary files via a crafted URL.

Affected configurations

NVD

Node

ciscointernet_streamerMatch2.2\(1\)

ciscointernet_streamerMatch2.3\(1\)

ciscointernet_streamerMatch2.3\(3\)

ciscointernet_streamerMatch2.3\(5\)

ciscointernet_streamerMatch2.3\(7\)

ciscointernet_streamerMatch2.3\(9\)

ciscointernet_streamerMatch2.4\(1\)

ciscointernet_streamerMatch2.4\(3\)

ciscointernet_streamerMatch2.4\(5\)

ciscointernet_streamerMatch2.5\(1\)

ciscointernet_streamerMatch2.5\(3\)

AND

ciscocontent_delivery_system

CPENameOperatorVersion
cisco:internet_streamercisco internet streamereq2.2\(1\)
cisco:internet_streamercisco internet streamereq2.3\(1\)
cisco:internet_streamercisco internet streamereq2.3\(3\)
cisco:internet_streamercisco internet streamereq2.3\(5\)
cisco:internet_streamercisco internet streamereq2.3\(7\)
cisco:internet_streamercisco internet streamereq2.3\(9\)
cisco:internet_streamercisco internet streamereq2.4\(1\)
cisco:internet_streamercisco internet streamereq2.4\(3\)
cisco:internet_streamercisco internet streamereq2.4\(5\)
cisco:internet_streamercisco internet streamereq2.5\(1\)

CPE	Name	Operator	Version
cisco:internet_streamer	cisco internet streamer	eq	2.2\(1\)
cisco:internet_streamer	cisco internet streamer	eq	2.3\(1\)
cisco:internet_streamer	cisco internet streamer	eq	2.3\(3\)
cisco:internet_streamer	cisco internet streamer	eq	2.3\(5\)
cisco:internet_streamer	cisco internet streamer	eq	2.3\(7\)
cisco:internet_streamer	cisco internet streamer	eq	2.3\(9\)
cisco:internet_streamer	cisco internet streamer	eq	2.4\(1\)
cisco:internet_streamer	cisco internet streamer	eq	2.4\(3\)
cisco:internet_streamer	cisco internet streamer	eq	2.4\(5\)
cisco:internet_streamer	cisco internet streamer	eq	2.5\(1\)

Rows per page:

1-10 of 121

References

osvdb.org/66508

secunia.com/advisories/40701

www.cisco.com/en/US/products/products_security_advisory09186a0080b3bd1c.shtml

www.securitytracker.com/id?1024234

www.vupen.com/english/advisories/2010/1881

exchange.xforce.ibmcloud.com/vulnerabilities/60567

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

77.9%

JSON

Related for CVE-2010-1577

cvelist1 securityvulns2 cisco1 nvd1 prion1