Lucene search

[email protected]NVD:CVE-2010-3983

HistoryOct 18, 2010 - 5:00 p.m.

CVE-2010-3983

2010-10-1817:00:04

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.003

Percentile

67.8%

JSON

CmcApp in SAP BusinessObjects Enterprise XI 3.2 allows remote authenticated users to gain privileges via vectors involving the Program Job Server and the Program Login property.

Affected configurations

Nvd

Node

sapbusinessobjectsMatch3.2enterprise_xi

VendorProductVersionCPE
sapbusinessobjects3.2cpe:2.3:a:sap:businessobjects:3.2:*:enterprise_xi:*:*:*:*:*

Vendor	Product	Version	CPE
sap	businessobjects	3.2	cpe:2.3:a:sap:businessobjects:3.2::enterprise_xi:::::

References

osvdb.org/68682

spl0it.org/files/talks/source_barcelona10/Hacking%20SAP%20BusinessObjects.pdf

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.003

Percentile

67.8%

JSON

Related for NVD:CVE-2010-3983

cvelist1 prion1 cve1