CVE-2010-0108 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	10 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:C/I:C/A:C
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 93%

Vendor	Product	Version
symantec	antivirus	10.0
symantec	antivirus	10.0.1
symantec	antivirus	10.0.1.1
symantec	antivirus	10.0.2
symantec	antivirus	10.0.2.1
symantec	antivirus	10.0.2.2
symantec	antivirus	10.0.3
symantec	antivirus	10.0.4
symantec	antivirus	10.0.5
symantec	antivirus	10.0.6
symantec	antivirus	10.0.7
symantec	antivirus	10.0.8
symantec	antivirus	10.0.9
symantec	antivirus	10.1
symantec	antivirus	10.1
symantec	antivirus	10.1:mp1
symantec	antivirus	10.1:mr4
symantec	antivirus	10.1:mr5
symantec	antivirus	10.1:mr7
symantec	antivirus	10.1.0.1
symantec	antivirus	10.1.4
symantec	antivirus	10.1.4.1
symantec	antivirus	10.1.5
symantec	antivirus	10.1.5.1
symantec	antivirus	10.1.6
symantec	antivirus	10.1.6.1
symantec	antivirus	10.1.7
symantec	antivirus	10.2
symantec	antivirus	10.2:mr2
symantec	antivirus	10.2:mr3
symantec	client_security	3.0
symantec	client_security	3.0:mr1
symantec	client_security	3.0:mr2
symantec	client_security	3.0.0.359
symantec	client_security	3.0.1.1000
symantec	client_security	3.0.1.1007
symantec	client_security	3.0.1.1008
symantec	client_security	3.0.2
symantec	client_security	3.0.2.2000
symantec	client_security	3.0.2.2001
symantec	client_security	3.0.2.2010
symantec	client_security	3.0.2.2011
symantec	client_security	3.0.2.2020
symantec	client_security	3.0.2.2021
symantec	client_security	3.1
symantec	client_security	3.1:mr4
symantec	client_security	3.1:mr5
symantec	client_security	3.1:mr7
symantec	client_security	3.1.0.396
symantec	client_security	3.1.0.401
symantec	client_security	3.1.394
symantec	client_security	3.1.400
symantec	client_security	3.1.401
symantec	endpoint_protection	11.0

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://dsecrg.com/pages/vul/show.php?id=139

http://secunia.com/advisories/38651

http://www.securityfocus.com/archive/1/509681/100/0/threaded

http://www.securityfocus.com/bid/38222

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100217_02

http://www.vupen.com/english/advisories/2010/0412

https://exchange.xforce.ibmcloud.com/vulnerabilities/56355

http://dsecrg.com/pages/vul/show.php?id=139

http://secunia.com/advisories/38651

http://www.securityfocus.com/archive/1/509681/100/0/threaded

http://www.securityfocus.com/bid/38222

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100217_02

http://www.vupen.com/english/advisories/2010/0412

https://exchange.xforce.ibmcloud.com/vulnerabilities/56355