Lucene search

[email protected]NVD:CVE-2010-2947

HistoryAug 24, 2010 - 8:00 p.m.

CVE-2010-2947

2010-08-2420:00:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

Confidence

High

EPSS

0.131

Percentile

95.5%

JSON

Heap-based buffer overflow in the HX_split function in string.c in libHX before 3.6 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a string that is inconsistent with the expected number of fields.

Affected configurations

Nvd

Node

jan_engelhardtlibhxRange≤3.5

jan_engelhardtlibhxMatch1.10.0

jan_engelhardtlibhxMatch1.10.1

jan_engelhardtlibhxMatch1.10.2

jan_engelhardtlibhxMatch1.15

jan_engelhardtlibhxMatch1.17

jan_engelhardtlibhxMatch1.18

jan_engelhardtlibhxMatch1.22

jan_engelhardtlibhxMatch1.23

jan_engelhardtlibhxMatch1.25

jan_engelhardtlibhxMatch1.26

jan_engelhardtlibhxMatch1.27

jan_engelhardtlibhxMatch1.28

jan_engelhardtlibhxMatch2.0

jan_engelhardtlibhxMatch2.1

jan_engelhardtlibhxMatch2.2

jan_engelhardtlibhxMatch2.3

jan_engelhardtlibhxMatch2.4

jan_engelhardtlibhxMatch2.5

jan_engelhardtlibhxMatch2.6

jan_engelhardtlibhxMatch2.7

jan_engelhardtlibhxMatch2.8

jan_engelhardtlibhxMatch2.9

jan_engelhardtlibhxMatch3.0

jan_engelhardtlibhxMatch3.0.1

jan_engelhardtlibhxMatch3.1

jan_engelhardtlibhxMatch3.2

jan_engelhardtlibhxMatch3.3

jan_engelhardtlibhxMatch3.4

VendorProductVersionCPE
jan_engelhardtlibhx*cpe:2.3:a:jan_engelhardt:libhx:*:*:*:*:*:*:*:*
jan_engelhardtlibhx1.10.0cpe:2.3:a:jan_engelhardt:libhx:1.10.0:*:*:*:*:*:*:*
jan_engelhardtlibhx1.10.1cpe:2.3:a:jan_engelhardt:libhx:1.10.1:*:*:*:*:*:*:*
jan_engelhardtlibhx1.10.2cpe:2.3:a:jan_engelhardt:libhx:1.10.2:*:*:*:*:*:*:*
jan_engelhardtlibhx1.15cpe:2.3:a:jan_engelhardt:libhx:1.15:*:*:*:*:*:*:*
jan_engelhardtlibhx1.17cpe:2.3:a:jan_engelhardt:libhx:1.17:*:*:*:*:*:*:*
jan_engelhardtlibhx1.18cpe:2.3:a:jan_engelhardt:libhx:1.18:*:*:*:*:*:*:*
jan_engelhardtlibhx1.22cpe:2.3:a:jan_engelhardt:libhx:1.22:*:*:*:*:*:*:*
jan_engelhardtlibhx1.23cpe:2.3:a:jan_engelhardt:libhx:1.23:*:*:*:*:*:*:*
jan_engelhardtlibhx1.25cpe:2.3:a:jan_engelhardt:libhx:1.25:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
jan_engelhardt	libhx	*	cpe:2.3:a:jan_engelhardt:libhx::::::::
jan_engelhardt	libhx	1.10.0	cpe:2.3:a:jan_engelhardt:libhx:1.10.0:::::::*
jan_engelhardt	libhx	1.10.1	cpe:2.3:a:jan_engelhardt:libhx:1.10.1:::::::*
jan_engelhardt	libhx	1.10.2	cpe:2.3:a:jan_engelhardt:libhx:1.10.2:::::::*
jan_engelhardt	libhx	1.15	cpe:2.3:a:jan_engelhardt:libhx:1.15:::::::*
jan_engelhardt	libhx	1.17	cpe:2.3:a:jan_engelhardt:libhx:1.17:::::::*
jan_engelhardt	libhx	1.18	cpe:2.3:a:jan_engelhardt:libhx:1.18:::::::*
jan_engelhardt	libhx	1.22	cpe:2.3:a:jan_engelhardt:libhx:1.22:::::::*
jan_engelhardt	libhx	1.23	cpe:2.3:a:jan_engelhardt:libhx:1.23:::::::*
jan_engelhardt	libhx	1.25	cpe:2.3:a:jan_engelhardt:libhx:1.25:::::::*