admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 09:11:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2010/CVE-2010-00xx/CVE-2010-0015.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

128 lines
4.0 KiB
JSON
Raw Blame History

{
"id": "CVE-2010-0015",
"sourceIdentifier": "secalert@redhat.com",
"published": "2010-01-14T18:30:00.577",
"lastModified": "2016-12-07T02:59:49.473",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "nis/nss_nis/nis-pwd.c in the GNU C Library (aka glibc or libc6) 2.7 and Embedded GLIBC (EGLIBC) 2.10.2 adds information from the passwd.adjunct.byname map to entries in the passwd map, which allows remote attackers to obtain the encrypted passwords of NIS accounts by calling the getpwnam function."
},
{
"lang": "es",
"value": "nis/nss_nis/nis-pwd.c en GNU C Library (tambi\u00e9n conocido como glibc o libc6) v2.7 y Embedded GLIBC (EGLIBC) v2.10.2, a\u00f1ade informaci\u00f3n desde el mapa passwd.adjunct.byname a las entradas en el mapa \"passwd\", lo que permite a atacantes remotos obtener las contrase\u00f1as encriptadas de las cuentas NIS llamando a la funci\u00f3n getpwam."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-255"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gnu:glibc:2.7:*:*:*:*:*:*:*",
"matchCriteriaId": "D41ABE25-DECD-4068-93DA-0B85281FD93A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gnu:glibc:2.10.2:*:*:*:*:*:*:*",
"matchCriteriaId": "9A93600D-7271-4AF5-8133-C6AA5BC8543F"
}
]
}
]
}
],
"references": [
{
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560333",
"source": "secalert@redhat.com"
},
{
"url": "http://marc.info/?l=oss-security&m=126320356003425&w=2",
"source": "secalert@redhat.com"
},
{
"url": "http://marc.info/?l=oss-security&m=126320570505651&w=2",
"source": "secalert@redhat.com"
},
{
"url": "http://sourceware.org/bugzilla/show_bug.cgi?id=11134",
"source": "secalert@redhat.com"
},
{
"url": "http://svn.debian.org/viewsvn/pkg-glibc/glibc-package/trunk/debian/patches/any/submitted-nis-shadow.diff?revision=4062&view=markup",
"source": "secalert@redhat.com"
},
{
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:111",
"source": "secalert@redhat.com"
},
{
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:112",
"source": "secalert@redhat.com"
},
{
"url": "http://www.openwall.com/lists/oss-security/2010/01/07/3",
"source": "secalert@redhat.com"
},
{
"url": "http://www.openwall.com/lists/oss-security/2010/01/08/1",
"source": "secalert@redhat.com"
},
{
"url": "http://www.openwall.com/lists/oss-security/2010/01/08/2",
"source": "secalert@redhat.com"
},
{
"url": "http://www.openwall.com/lists/oss-security/2010/01/11/6",
"source": "secalert@redhat.com"
},
{
"url": "https://lists.opensuse.org/opensuse-security-announce/2010-10/msg00007.html",
"source": "secalert@redhat.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink