admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-12 02:04:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2010/CVE-2010-27xx/CVE-2010-2785.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

240 lines
7.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2010-2785",
"sourceIdentifier": "secalert@redhat.com",
"published": "2010-08-02T20:40:01.560",
"lastModified": "2024-11-21T01:17:22.407",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The IRC Protocol component in KVIrc 3.x and 4.x before r4693 does not properly handle \\ (backslash) characters, which allows remote authenticated users to execute arbitrary CTCP commands via vectors involving \\r and \\40 sequences, a different vulnerability than CVE-2010-2451 and CVE-2010-2452."
},
{
"lang": "es",
"value": "El componente RC Protocol en KVIrc 3.x y 4.x, en versiones anteriores a la r4693, no maneja adecuadamente caracteres \\ (barra invertida), lo que permite a usuarios locales autenticados ejecutar comandos CTCP de su elecci\u00f3n mediante vectores relacionados con secuencias \\r and \\40, una vulnerabilidad diferente a CVE-2010-2451 y CVE-2010-2452."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"baseScore": 6.5,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:kvirc:kvirc:3.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "24A0A10B-8DDC-4C5C-9E71-DE35B5AD4F6C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:kvirc:kvirc:3.0.0:beta1:*:*:*:*:*:*",
"matchCriteriaId": "A97539C0-DAFD-4187-9A31-93F3AF850588"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:kvirc:kvirc:3.0.0:beta2:*:*:*:*:*:*",
"matchCriteriaId": "CB5277BA-B51B-4086-960A-3351EAB9ACA8"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:kvirc:kvirc:3.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "37C39663-F342-4115-B3D5-F97D3525A95A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:kvirc:kvirc:3.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B91ED333-CB47-401A-894B-4A1CF5AED8E9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:kvirc:kvirc:3.4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B6742F39-882E-47E3-A375-B43C7ED771C3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:kvirc:kvirc:3.4.2:rc1:*:*:*:*:*:*",
"matchCriteriaId": "2D0F8E8D-E1B3-4838-A7E5-9D1678E848CD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:kvirc:kvirc:4.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "63A25E20-68DF-4075-95D7-7652A7E2085B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:kvirc:kvirc:4.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C6CEC61C-E71C-4B70-B127-26E2DE2BB27F"
}
]
}
]
}
],
"references": [
{
"url": "http://bugs.gentoo.org/show_bug.cgi?id=330111",
"source": "secalert@redhat.com"
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044625.html",
"source": "secalert@redhat.com"
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044643.html",
"source": "secalert@redhat.com"
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html",
"source": "secalert@redhat.com"
},
{
"url": "http://marc.info/?l=oss-security&m=128041011428629&w=2",
"source": "secalert@redhat.com",
"tags": [
"Patch"
]
},
{
"url": "http://openwall.com/lists/oss-security/2010/07/28/1",
"source": "secalert@redhat.com",
"tags": [
"Patch"
]
},
{
"url": "http://secunia.com/advisories/40727",
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://secunia.com/advisories/40796",
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.osvdb.org/66648",
"source": "secalert@redhat.com"
},
{
"url": "https://svn.kvirc.de/kvirc/changeset/4693",
"source": "secalert@redhat.com",
"tags": [
"Patch"
]
},
{
"url": "https://svn.kvirc.de/kvirc/ticket/858",
"source": "secalert@redhat.com",
"tags": [
"Patch"
]
},
{
"url": "http://bugs.gentoo.org/show_bug.cgi?id=330111",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044625.html",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044643.html",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://marc.info/?l=oss-security&m=128041011428629&w=2",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
]
},
{
"url": "http://openwall.com/lists/oss-security/2010/07/28/1",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
]
},
{
"url": "http://secunia.com/advisories/40727",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://secunia.com/advisories/40796",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.osvdb.org/66648",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "https://svn.kvirc.de/kvirc/changeset/4693",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
]
},
{
"url": "https://svn.kvirc.de/kvirc/ticket/858",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink