cvelistv5 - cve-2010-2965

CVE-2010-2965 (GCVE-0-2010-2965)

Vulnerability from cvelistv5

Published

2010-08-04 21:00

Modified

2025-01-28 01:29

Severity ?

CWE

Summary

References

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

ghsa-4hhv-jc45-cmpc

Vulnerability from github

Published

2022-05-17 05:49

Modified

2025-01-28 03:31

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2010-2965"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-863"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2010-08-05T13:22:00Z",
    "severity": "HIGH"
  },
  "details": "The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185, a related issue to CVE-2005-3804.",
  "id": "GHSA-4hhv-jc45-cmpc",
  "modified": "2025-01-28T03:31:12Z",
  "published": "2022-05-17T05:49:23Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2965"
    },
    {
      "type": "WEB",
      "url": "https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708"
    },
    {
      "type": "WEB",
      "url": "http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html"
    },
    {
      "type": "WEB",
      "url": "http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2025/Jan/10"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/362332"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/MAPG-86EPFA"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/MAPG-86FPQL"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185, a related issue to CVE-2005-3804. Some products based on VxWorks have the WDB target agent debug service enabled by default. This service provides read/write access to the device's memory and allows functions to be called. The VxWorks WDB target agent is a target-resident, run-time facility that is required for connecting host tools to a VxWorks target system during development. WDB is a selectable component in the VxWorks configuration and is enabled by default. The WDB debug agent access is not secured and does provide a security hole in a deployed system. It is advisable for production systems to reconfigure VxWorks with only those components needed for deployed operation and to build it as the appropriate type of system image. It is recommended to remove host development components such as the WDB target agent and debugging components (INCLUDE_WDB and INCLUDE_DEBUG) as well as other operating system components that are not required to support customer applications. Consult the VxWorks Kernel Programmer's guide for more information on WDB.Additional information can be found in ICS-CERT advisory ICSA-10-214-01 and on the Metasploit Blog. An attacker can use the debug service to fully compromise the device. The hashing algorithm that is used in the standard authentication API for VxWorks is susceptible to collisions. An attacker can brute force a password by guessing a string that produces the same hash as a legitimate password. It is relatively easy to find a string that has the same hash value as a regular password.Authentication by attacker API (loginLib) May be used to access services using. The problem is CVE-2005-3804 May be related toBy a third party UDP An arbitrary memory area may be read or modified, a function call executed, or a task managed through a request to the port. VxWorks is an embedded real-time operating system. VxWorks has multiple security vulnerabilities that allow an attacker to bypass security restrictions and gain unauthorized access to the system. For example, when logging in with the default 'target/password', 'y{{{{{SS' will HASH out the same result as 'password'. So you can use 'password' and 'y{{{{{SS' as the password to log in. Permissions and access control vulnerabilities exist in the WDB Target Agent Debugging Service in Wind River VxWorks 6.x, 5.x and earlier. VxWorks is prone to a remote security-bypass vulnerability. Successful exploits will allow remote attackers to perform debugging tasks on the vulnerable device. The issue affects multiple products from multiple vendors that ship with the VxWorks operating system. NOTE: This issue was previously covered in BID 42114 (VxWorks Multiple Security Vulnerabilities) but has been separated into its own record to better document it. ----------------------------------------------------------------------

"From 2007 to 2009 vulnerabilities in a typical end-user PC almost doubled from about 220 to 420."

Non-Microsoft software to blame for increase in vulnerabilities affecting typical Windows end-users, read more:

http://secunia.com/gfx/pdf/Secunia_Half_Year_Report_2010.pdf

TITLE: VxWorks loginLib Default Password Hashing Algorithm Security Issue

SECUNIA ADVISORY ID: SA40803

VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/40803/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=40803

RELEASE DATE: 2010-08-03

DISCUSS ADVISORY: http://secunia.com/advisories/40803/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s)

http://secunia.com/advisories/40803/

ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=40803

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION: A security issue has been reported in VxWorks, which can be exploited by malicious people to conduct brute force attacks. collision attacks.

Successful exploitation requires that a valid login name is known.

SOLUTION: The vendor has issued patches removing the 80 characters limitation for encrypted password string length limitation for VxWorks versions 5.5.1 through 6.4.

Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

PROVIDED AND/OR DISCOVERED BY: HD Moore

ORIGINAL ADVISORY: HD Moore: http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html

Wind River: http://www.kb.cert.org/vuls/id/MAPG-863QH9 https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033709

OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

DEEP LINKS: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

EXPLOIT: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201008-0270",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "river systems vxworks through",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "wind",
        "version": "6.56.9"
      },
      {
        "model": "vxworks",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "windriver",
        "version": "6.9.4.12"
      },
      {
        "model": "1756-enbt\\/a",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "rockwellautomation",
        "version": "3.2.6"
      },
      {
        "model": "1756-enbt\\/a",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "rockwellautomation",
        "version": "3.6.1"
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "ericsson",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "polycom",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "wind river",
        "version": null
      },
      {
        "model": "vxworks",
        "scope": null,
        "trust": 0.8,
        "vendor": "wind river",
        "version": null
      },
      {
        "model": "1756-enbt series a",
        "scope": null,
        "trust": 0.8,
        "vendor": "rockwell automation",
        "version": null
      },
      {
        "model": "1756-enbt series a",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "rockwell automation",
        "version": "3.2.6 and  3.6.1"
      },
      {
        "model": "vxworks",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "wind river",
        "version": "6.x"
      },
      {
        "model": "vxworks",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "wind river",
        "version": "5.x"
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.6,
        "vendor": "no",
        "version": null
      },
      {
        "model": "1756-enbt series a",
        "scope": null,
        "trust": 0.6,
        "vendor": "rockwellautomation",
        "version": null
      },
      {
        "model": "phaser 3635mfp",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "xerox",
        "version": "0"
      },
      {
        "model": "river systems vxworks",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "wind",
        "version": "0"
      },
      {
        "model": "oronoco ap600",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proxim",
        "version": "2.5.5(1070)"
      },
      {
        "model": "oronoco ap600",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proxim",
        "version": "2.5.3(914)"
      },
      {
        "model": "oronoco ap600",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proxim",
        "version": "2.5.2(894)"
      },
      {
        "model": "oronoco ap600",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proxim",
        "version": "2.4.5(758)"
      },
      {
        "model": "oronoco ap600",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proxim",
        "version": "2.4.11(821)"
      },
      {
        "model": "oronoco ap600",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proxim",
        "version": "2.2.0(460)"
      },
      {
        "model": "oronoco ap600",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proxim",
        "version": "2.1.1(403)"
      },
      {
        "model": "oronoco ap600",
        "scope": null,
        "trust": 0.3,
        "vendor": "proxim",
        "version": null
      },
      {
        "model": "grandslam",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "paradyne",
        "version": "4200"
      },
      {
        "model": "networks wlan access point",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "2220"
      },
      {
        "model": "networks passport",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "1100/1150/1200/1250"
      },
      {
        "model": "networks optical trouble ticketing",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "0"
      },
      {
        "model": "cmts038-007 cmts2.6.0",
        "scope": null,
        "trust": 0.3,
        "vendor": "kathrein",
        "version": null
      },
      {
        "model": "cmts038-007 cmts2.17.0",
        "scope": null,
        "trust": 0.3,
        "vendor": "kathrein",
        "version": null
      },
      {
        "model": "cmts038-007 cmts2.14.0",
        "scope": null,
        "trust": 0.3,
        "vendor": "kathrein",
        "version": null
      },
      {
        "model": "cmts038-007 cmts2.11.0",
        "scope": null,
        "trust": 0.3,
        "vendor": "kathrein",
        "version": null
      },
      {
        "model": "gaoke co mg6000 voip gateway",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "",
        "version": "0"
      },
      {
        "model": "networks edgeiron 4802f",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "foundry",
        "version": "1.4.8"
      },
      {
        "model": "networks edgeiron 4802f",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "foundry",
        "version": "1.3.7"
      },
      {
        "model": "networks edgeiron 4802f",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "foundry",
        "version": "0"
      },
      {
        "model": "ons 15454sdh",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "0"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "154540"
      },
      {
        "model": "ip phone",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7920"
      },
      {
        "model": "cadant c3 cmts",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "arris",
        "version": "0"
      },
      {
        "model": "omniswitch 5.1.5.245.r04",
        "scope": null,
        "trust": 0.3,
        "vendor": "alcatel lucent",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "7d738f00-463f-11e9-ac13-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "017253fa-2356-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CERT/CC",
        "id": "VU#840249"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1489"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-3891"
      },
      {
        "db": "BID",
        "id": "42158"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001882"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-005612"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-029"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2965"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/o:windriver:vxworks",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001882"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Thanks to HD Moore for reporting a wider scope with additional research related to this vulnerability.  Earlier public reports came from Bennett Todd and Shawn Merdinger. This document was written by Jared Allar. ",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#362332"
      }
    ],
    "trust": 0.8
  },
  "cve": "CVE-2010-2965",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CVE-2010-2965",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 1.8,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "availabilityRequirement": "NOT DEFINED",
            "baseScore": 10.0,
            "collateralDamagePotential": "NOT DEFINED",
            "confidentialityImpact": "COMPLETE",
            "confidentialityRequirement": "NOT DEFINED",
            "enviromentalScore": 9.5,
            "exploitability": "HIGH",
            "exploitabilityScore": 10.0,
            "id": "CVE-2010-2965",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "integrityRequirement": "NOT DEFINED",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "remediationLevel": "WORKAROUND",
            "reportConfidence": "CONFIRMED",
            "severity": "HIGH",
            "targetDistribution": "HIGH",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CARNEGIE MELLON",
            "availabilityImpact": "COMPLETE",
            "availabilityRequirement": "NOT DEFINED",
            "baseScore": 10.0,
            "collateralDamagePotential": "NOT DEFINED",
            "confidentialityImpact": "COMPLETE",
            "confidentialityRequirement": "NOT DEFINED",
            "enviromentalScore": 9.5,
            "exploitability": "HIGH",
            "exploitabilityScore": 10.0,
            "id": "VU#840249",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "integrityRequirement": "NOT DEFINED",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "remediationLevel": "WORKAROUND",
            "reportConfidence": "CONFIRMED",
            "severity": "HIGH",
            "targetDistribution": "NOT DEFINED",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2010-3891",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "IVD",
            "availabilityImpact": "NONE",
            "baseScore": 7.8,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "bab59964-1fb2-11e6-abef-000c29c66e3d",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.2,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
            "version": "2.9 [IVD]"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "IVD",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "7d72f2c0-463f-11e9-98f5-000c29342cb1",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "HIGH",
            "trust": 0.2,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.9 [IVD]"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "IVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "7d738f00-463f-11e9-ac13-000c29342cb1",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.2,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.9 [IVD]"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "IVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "017253fa-2356-11e6-abef-000c29c66e3d",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.2,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.9 [IVD]"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "VHN-45570",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2010-2965",
            "trust": 1.6,
            "value": "HIGH"
          },
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2010-2965",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#840249",
            "trust": 0.8,
            "value": "HIGH"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2010-3891",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201008-029",
            "trust": 0.6,
            "value": "LOW"
          },
          {
            "author": "IVD",
            "id": "bab59964-1fb2-11e6-abef-000c29c66e3d",
            "trust": 0.2,
            "value": "HIGH"
          },
          {
            "author": "IVD",
            "id": "7d72f2c0-463f-11e9-98f5-000c29342cb1",
            "trust": 0.2,
            "value": "HIGH"
          },
          {
            "author": "IVD",
            "id": "7d738f00-463f-11e9-ac13-000c29342cb1",
            "trust": 0.2,
            "value": "CRITICAL"
          },
          {
            "author": "IVD",
            "id": "017253fa-2356-11e6-abef-000c29c66e3d",
            "trust": 0.2,
            "value": "CRITICAL"
          },
          {
            "author": "VULHUB",
            "id": "VHN-45570",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "bab59964-1fb2-11e6-abef-000c29c66e3d"
      },
      {
        "db": "IVD",
        "id": "7d72f2c0-463f-11e9-98f5-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "7d738f00-463f-11e9-ac13-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "017253fa-2356-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CERT/CC",
        "id": "VU#362332"
      },
      {
        "db": "CERT/CC",
        "id": "VU#840249"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-3891"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45570"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-005612"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-029"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2965"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185, a related issue to CVE-2005-3804. Some products based on VxWorks have the WDB target agent debug service enabled by default.  This service provides read/write access to the device\u0027s memory and allows functions to be called. The VxWorks WDB target agent is a target-resident, run-time facility that is required for connecting host tools to a VxWorks target system during development. WDB is a selectable component in the VxWorks configuration and is enabled by default. The WDB debug agent access is not secured and does provide a security hole in a deployed system. It is advisable for production systems to reconfigure VxWorks with only those components needed for deployed operation and to build it as the appropriate type of system image.  It is recommended to remove host development components such as the WDB target agent and debugging components (INCLUDE_WDB and INCLUDE_DEBUG) as well as other operating system components that are not required to support customer applications. Consult the VxWorks Kernel Programmer\u0027s guide for more information on WDB.Additional information can be found in ICS-CERT advisory ICSA-10-214-01 and on the Metasploit Blog. An attacker can use the debug service to fully compromise the device. The hashing algorithm that is used in the standard authentication API for VxWorks is susceptible to collisions.  An attacker can brute force a password by guessing a string that produces the same hash as a legitimate password. It is relatively easy to find a string that has the same hash value as a regular password.Authentication by attacker API (loginLib) May be used to access services using. The problem is CVE-2005-3804 May be related toBy a third party UDP An arbitrary memory area may be read or modified, a function call executed, or a task managed through a request to the port. VxWorks is an embedded real-time operating system. VxWorks has multiple security vulnerabilities that allow an attacker to bypass security restrictions and gain unauthorized access to the system. For example, when logging in with the default \u0027target/password\u0027, \u0027y{{{{{SS\u0027 will HASH out the same result as \u0027password\u0027. So you can use \u0027password\u0027 and \u0027y{{{{{SS\u0027 as the password to log in. Permissions and access control vulnerabilities exist in the WDB Target Agent Debugging Service in Wind River VxWorks 6.x, 5.x and earlier. VxWorks is prone to a remote security-bypass vulnerability. \nSuccessful exploits will allow remote attackers to perform debugging tasks on the vulnerable device. \nThe issue affects multiple products from multiple vendors that ship with the VxWorks operating system. \nNOTE: This issue was previously covered in BID 42114 (VxWorks Multiple Security Vulnerabilities) but has been separated into its own record to better document it. ----------------------------------------------------------------------\n\n\n\"From 2007 to 2009 vulnerabilities in a typical end-user PC almost doubled from about 220 to 420.\"\n\nNon-Microsoft software to blame for increase in vulnerabilities affecting typical Windows end-users, read more:\n\nhttp://secunia.com/gfx/pdf/Secunia_Half_Year_Report_2010.pdf\n\n\n----------------------------------------------------------------------\n\nTITLE:\nVxWorks loginLib Default Password Hashing Algorithm Security Issue\n\nSECUNIA ADVISORY ID:\nSA40803\n\nVERIFY ADVISORY:\nSecunia.com\nhttp://secunia.com/advisories/40803/\nCustomer Area (Credentials Required)\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=40803\n\nRELEASE DATE:\n2010-08-03\n\nDISCUSS ADVISORY:\nhttp://secunia.com/advisories/40803/#comments\n\nAVAILABLE ON SITE AND IN CUSTOMER AREA:\n * Last Update\n * Popularity\n * Comments\n * Criticality Level\n * Impact\n * Where\n * Solution Status\n * Operating System / Software\n * CVE Reference(s)\n\nhttp://secunia.com/advisories/40803/\n\nONLY AVAILABLE IN CUSTOMER AREA:\n * Authentication Level\n * Report Reliability\n * Secunia PoC\n * Secunia Analysis\n * Systems Affected\n * Approve Distribution\n * Remediation Status\n * Secunia CVSS Score\n * CVSS\n\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=40803\n\nONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:\n * AUTOMATED SCANNING\n\nhttp://secunia.com/vulnerability_scanning/personal/\nhttp://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/\n\nDESCRIPTION:\nA security issue has been reported in VxWorks, which can be exploited\nby malicious people to conduct brute force attacks. collision attacks. \n\nSuccessful exploitation requires that a valid login name is known. \n\nSOLUTION:\nThe vendor has issued patches removing the 80 characters limitation\nfor encrypted password string length limitation for VxWorks versions\n5.5.1 through 6.4. \n\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nPROVIDED AND/OR DISCOVERED BY:\nHD Moore\n\nORIGINAL ADVISORY:\nHD Moore:\nhttp://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html\n\nWind River:\nhttp://www.kb.cert.org/vuls/id/MAPG-863QH9\nhttps://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033709\n\nOTHER REFERENCES:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nDEEP LINKS:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nEXTENDED DESCRIPTION:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nEXTENDED SOLUTION:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nEXPLOIT:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2010-2965"
      },
      {
        "db": "CERT/CC",
        "id": "VU#362332"
      },
      {
        "db": "CERT/CC",
        "id": "VU#840249"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001882"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-005612"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1489"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-3891"
      },
      {
        "db": "BID",
        "id": "42158"
      },
      {
        "db": "IVD",
        "id": "bab59964-1fb2-11e6-abef-000c29c66e3d"
      },
      {
        "db": "IVD",
        "id": "7d72f2c0-463f-11e9-98f5-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "7d738f00-463f-11e9-ac13-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "017253fa-2356-11e6-abef-000c29c66e3d"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45570"
      },
      {
        "db": "PACKETSTORM",
        "id": "92372"
      }
    ],
    "trust": 6.03
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.kb.cert.org/vuls/id/362332",
        "trust": 0.8,
        "type": "unknown"
      },
      {
        "reference": "https://www.kb.cert.org/vuls/id/840249",
        "trust": 0.8,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#362332"
      },
      {
        "db": "CERT/CC",
        "id": "VU#840249"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#362332",
        "trust": 4.8
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2965",
        "trust": 3.8
      },
      {
        "db": "CERT/CC",
        "id": "VU#840249",
        "trust": 1.7
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-10-214-01",
        "trust": 1.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-029",
        "trust": 1.1
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1489",
        "trust": 1.0
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-3891",
        "trust": 1.0
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001882",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-005612",
        "trust": 0.8
      },
      {
        "db": "BID",
        "id": "42114",
        "trust": 0.6
      },
      {
        "db": "BID",
        "id": "42158",
        "trust": 0.4
      },
      {
        "db": "IVD",
        "id": "BAB59964-1FB2-11E6-ABEF-000C29C66E3D",
        "trust": 0.2
      },
      {
        "db": "IVD",
        "id": "7D72F2C0-463F-11E9-98F5-000C29342CB1",
        "trust": 0.2
      },
      {
        "db": "IVD",
        "id": "7D738F00-463F-11E9-AC13-000C29342CB1",
        "trust": 0.2
      },
      {
        "db": "IVD",
        "id": "017253FA-2356-11E6-ABEF-000C29C66E3D",
        "trust": 0.2
      },
      {
        "db": "SECUNIA",
        "id": "40803",
        "trust": 0.2
      },
      {
        "db": "VULHUB",
        "id": "VHN-45570",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "92372",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "bab59964-1fb2-11e6-abef-000c29c66e3d"
      },
      {
        "db": "IVD",
        "id": "7d72f2c0-463f-11e9-98f5-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "7d738f00-463f-11e9-ac13-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "017253fa-2356-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CERT/CC",
        "id": "VU#362332"
      },
      {
        "db": "CERT/CC",
        "id": "VU#840249"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1489"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-3891"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45570"
      },
      {
        "db": "BID",
        "id": "42158"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001882"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-005612"
      },
      {
        "db": "PACKETSTORM",
        "id": "92372"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-029"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2965"
      }
    ]
  },
  "id": "VAR-201008-0270",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "IVD",
        "id": "bab59964-1fb2-11e6-abef-000c29c66e3d"
      },
      {
        "db": "IVD",
        "id": "7d72f2c0-463f-11e9-98f5-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "7d738f00-463f-11e9-ac13-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "017253fa-2356-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1489"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-3891"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45570"
      }
    ],
    "trust": 2.52177709
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "ICS"
        ],
        "sub_category": null,
        "trust": 2.0
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "bab59964-1fb2-11e6-abef-000c29c66e3d"
      },
      {
        "db": "IVD",
        "id": "7d72f2c0-463f-11e9-98f5-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "7d738f00-463f-11e9-ac13-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "017253fa-2356-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1489"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-3891"
      }
    ]
  },
  "last_update_date": "2024-11-29T22:20:33.990000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://windriver.com/"
      },
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://www.rockwellautomation.com/"
      },
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://windriver.com/index.html"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001882"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-005612"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-863",
        "trust": 1.0
      },
      {
        "problemtype": "CWE-264",
        "trust": 0.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-45570"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-005612"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2965"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 3.4,
        "url": "http://www.kb.cert.org/vuls/id/362332"
      },
      {
        "trust": 2.5,
        "url": "https://support.windriver.com/olsportal/faces/maintenance/downloaddetails.jspx?contentid=033708"
      },
      {
        "trust": 2.1,
        "url": "http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html"
      },
      {
        "trust": 1.7,
        "url": "http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735"
      },
      {
        "trust": 1.7,
        "url": "http://www.kb.cert.org/vuls/id/mapg-86epfa"
      },
      {
        "trust": 1.7,
        "url": "http://www.kb.cert.org/vuls/id/mapg-86fpql"
      },
      {
        "trust": 1.6,
        "url": "https://community.rapid7.com/community/metasploit/blog/2010/08/02/shiny-old-vxworks-vulnerabilities"
      },
      {
        "trust": 1.6,
        "url": "http://www.us-cert.gov/control_systems/pdf/icsa-10-214-01_vxworks_vulnerabilities.pdf"
      },
      {
        "trust": 1.6,
        "url": "http://blogs.windriver.com/chauhan/2010/08/vxworks-secure.html"
      },
      {
        "trust": 0.9,
        "url": "https://support.windriver.com/olsportal/faces/maintenance/downloaddetails.jspx?contentid=033709"
      },
      {
        "trust": 0.9,
        "url": "http://www.kb.cert.org/vuls/id/mapg-863qh9"
      },
      {
        "trust": 0.8,
        "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051116-7920.shtml"
      },
      {
        "trust": 0.8,
        "url": "http://seclists.org/vuln-dev/2002/may/179"
      },
      {
        "trust": 0.8,
        "url": "http://thesauceofutterpwnage.blogspot.com/2010/08/metasploit-vxworks-wdb-agent-attack.html"
      },
      {
        "trust": 0.8,
        "url": "http://cwe.mitre.org/data/definitions/215.html"
      },
      {
        "trust": 0.8,
        "url": "http://cwe.mitre.org/data/definitions/505.html"
      },
      {
        "trust": 0.8,
        "url": "http://newsoft-tech.blogspot.com/2010/09/follow-up-on-vxworks-issue.html"
      },
      {
        "trust": 0.8,
        "url": "http://cvk.posterous.com/how-to-crack-vxworks-password-hashes"
      },
      {
        "trust": 0.8,
        "url": "http://cwe.mitre.org/data/definitions/798.html"
      },
      {
        "trust": 0.8,
        "url": "http://cwe.mitre.org/data/definitions/327.html"
      },
      {
        "trust": 0.8,
        "url": "http://cwe.mitre.org/data/definitions/916.html"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/cert/jvnvu840249"
      },
      {
        "trust": 0.8,
        "url": "http://www.kb.cert.org/vuls/id/840249"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-2965"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-2965"
      },
      {
        "trust": 0.6,
        "url": "http://www.kb.cert.org/vuls/id/362332http"
      },
      {
        "trust": 0.3,
        "url": "http://download.schneider-electric.com/files?p_doc_ref=sevd%202013-345-01"
      },
      {
        "trust": 0.3,
        "url": "http://www.windriver.com/"
      },
      {
        "trust": 0.3,
        "url": "/archive/1/512825"
      },
      {
        "trust": 0.1,
        "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=40803"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/products/corporate/evm/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/40803/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/vulnerability_scanning/personal/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/gfx/pdf/secunia_half_year_report_2010.pdf"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/40803/#comments"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/about_secunia_advisories/"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#362332"
      },
      {
        "db": "CERT/CC",
        "id": "VU#840249"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1489"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-3891"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45570"
      },
      {
        "db": "BID",
        "id": "42158"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001882"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-005612"
      },
      {
        "db": "PACKETSTORM",
        "id": "92372"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-029"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2965"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "IVD",
        "id": "bab59964-1fb2-11e6-abef-000c29c66e3d"
      },
      {
        "db": "IVD",
        "id": "7d72f2c0-463f-11e9-98f5-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "7d738f00-463f-11e9-ac13-000c29342cb1"
      },
      {
        "db": "IVD",
        "id": "017253fa-2356-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CERT/CC",
        "id": "VU#362332"
      },
      {
        "db": "CERT/CC",
        "id": "VU#840249"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1489"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-3891"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45570"
      },
      {
        "db": "BID",
        "id": "42158"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001882"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-005612"
      },
      {
        "db": "PACKETSTORM",
        "id": "92372"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-029"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2965"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2010-08-03T00:00:00",
        "db": "IVD",
        "id": "bab59964-1fb2-11e6-abef-000c29c66e3d"
      },
      {
        "date": "2010-08-03T00:00:00",
        "db": "IVD",
        "id": "7d72f2c0-463f-11e9-98f5-000c29342cb1"
      },
      {
        "date": "2010-08-05T00:00:00",
        "db": "IVD",
        "id": "7d738f00-463f-11e9-ac13-000c29342cb1"
      },
      {
        "date": "2010-08-05T00:00:00",
        "db": "IVD",
        "id": "017253fa-2356-11e6-abef-000c29c66e3d"
      },
      {
        "date": "2010-08-02T00:00:00",
        "db": "CERT/CC",
        "id": "VU#362332"
      },
      {
        "date": "2010-08-02T00:00:00",
        "db": "CERT/CC",
        "id": "VU#840249"
      },
      {
        "date": "2010-08-03T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2010-1489"
      },
      {
        "date": "2010-08-05T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2010-3891"
      },
      {
        "date": "2010-08-05T00:00:00",
        "db": "VULHUB",
        "id": "VHN-45570"
      },
      {
        "date": "2010-08-02T00:00:00",
        "db": "BID",
        "id": "42158"
      },
      {
        "date": "2010-08-26T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2010-001882"
      },
      {
        "date": "2012-12-20T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2010-005612"
      },
      {
        "date": "2010-08-05T13:57:03",
        "db": "PACKETSTORM",
        "id": "92372"
      },
      {
        "date": "2010-08-05T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201008-029"
      },
      {
        "date": "2010-08-05T13:22:29.793000",
        "db": "NVD",
        "id": "CVE-2010-2965"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2020-09-02T00:00:00",
        "db": "CERT/CC",
        "id": "VU#362332"
      },
      {
        "date": "2014-06-02T00:00:00",
        "db": "CERT/CC",
        "id": "VU#840249"
      },
      {
        "date": "2010-08-03T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2010-1489"
      },
      {
        "date": "2010-08-05T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2010-3891"
      },
      {
        "date": "2010-08-05T00:00:00",
        "db": "VULHUB",
        "id": "VHN-45570"
      },
      {
        "date": "2015-03-19T08:47:00",
        "db": "BID",
        "id": "42158"
      },
      {
        "date": "2010-08-26T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2010-001882"
      },
      {
        "date": "2012-12-20T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2010-005612"
      },
      {
        "date": "2022-08-08T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201008-029"
      },
      {
        "date": "2024-11-21T01:17:44.813000",
        "db": "NVD",
        "id": "CVE-2010-2965"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-029"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Wind River Systems VxWorks debug service enabled by default",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#362332"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "permissions and access control issues",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-029"
      }
    ],
    "trust": 0.6
  }
}

fkie_cve-2010-2965

Vulnerability from fkie_nvd

Published

2010-08-05 13:22

Modified

2025-04-11 00:51

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html	Not Applicable
cve@mitre.org	http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735	Permissions Required
cve@mitre.org	http://www.kb.cert.org/vuls/id/362332	Third Party Advisory, US Government Resource
cve@mitre.org	http://www.kb.cert.org/vuls/id/MAPG-86EPFA	Third Party Advisory, US Government Resource
cve@mitre.org	http://www.kb.cert.org/vuls/id/MAPG-86FPQL	Third Party Advisory, US Government Resource
cve@mitre.org	https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708	Permissions Required
af854a3a-2127-422b-91ae-364da2661108	http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html	Not Applicable
af854a3a-2127-422b-91ae-364da2661108	http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735	Permissions Required
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2025/Jan/10
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/362332	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/MAPG-86EPFA	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/MAPG-86FPQL	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708	Permissions Required

Impacted products

Vendor	Product	Version
rockwellautomation	1756-enbt\/a_firmware	3.2.6
rockwellautomation	1756-enbt\/a_firmware	3.6.1
windriver	vxworks	*
rockwellautomation	1756-enbt\/a	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:rockwellautomation:1756-enbt\\/a_firmware:3.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "22C36961-F714-459C-ADF9-107C8EE99115",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:rockwellautomation:1756-enbt\\/a_firmware:3.6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4B6FA17-2C3D-45F8-B327-8760DD3757CF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:windriver:vxworks:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3F579A94-D4C9-4A16-9A1A-DE62C6F6ADC9",
              "versionEndIncluding": "6.9.4.12",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:rockwellautomation:1756-enbt\\/a:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A3DE5C9-82F9-4D92-B735-D85816EE8557",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185, a related issue to CVE-2005-3804."
    },
    {
      "lang": "es",
      "value": "El servicio WDB target agent debug en Wind River VxWorks v6.x, v5.x, y anteriores, como los usados en el Rockwell Automation 1756-ENBT serie A con firmware v3.2.6 y v3.6.1 y otros productos, permiten a atacantes remotos leer o modificar a su elecci\u00f3n direcciones de memoria, realizar llamdas a funciones, o administrar tareas a trav\u00e9s de peticiones UDP al puerto 17185, relacionado con el comportamiento de CVE-2005-3804."
    }
  ],
  "id": "CVE-2010-2965",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2010-08-05T13:22:29.793",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Not Applicable"
      ],
      "url": "http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Permissions Required"
      ],
      "url": "http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/362332"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/MAPG-86EPFA"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/MAPG-86FPQL"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Permissions Required"
      ],
      "url": "https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Not Applicable"
      ],
      "url": "http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Permissions Required"
      ],
      "url": "http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://seclists.org/fulldisclosure/2025/Jan/10"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/362332"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/MAPG-86EPFA"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/MAPG-86FPQL"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Permissions Required"
      ],
      "url": "https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-863"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2010-2965

Vulnerability from gsd

Modified

2023-12-13 01:21

Details

Aliases

CVE-2010-2965

Aliases

CVE-2010-2965

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2010-2965",
    "description": "The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185, a related issue to CVE-2005-3804.",
    "id": "GSD-2010-2965"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2010-2965"
      ],
      "details": "The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185, a related issue to CVE-2005-3804.",
      "id": "GSD-2010-2965",
      "modified": "2023-12-13T01:21:31.139910Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2010-2965",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185, a related issue to CVE-2005-3804."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www.kb.cert.org/vuls/id/MAPG-86FPQL",
            "refsource": "CONFIRM",
            "url": "http://www.kb.cert.org/vuls/id/MAPG-86FPQL"
          },
          {
            "name": "http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735",
            "refsource": "CONFIRM",
            "url": "http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735"
          },
          {
            "name": "VU#362332",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/362332"
          },
          {
            "name": "https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708",
            "refsource": "CONFIRM",
            "url": "https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708"
          },
          {
            "name": "http://www.kb.cert.org/vuls/id/MAPG-86EPFA",
            "refsource": "CONFIRM",
            "url": "http://www.kb.cert.org/vuls/id/MAPG-86EPFA"
          },
          {
            "name": "http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html",
            "refsource": "MISC",
            "url": "http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:windriver:vxworks:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "6.9.4.12",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:rockwellautomation:1756-enbt\\/a_firmware:3.2.6:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:rockwellautomation:1756-enbt\\/a_firmware:3.6.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:rockwellautomation:1756-enbt\\/a:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2010-2965"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185, a related issue to CVE-2005-3804."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-863"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.kb.cert.org/vuls/id/MAPG-86FPQL",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/MAPG-86FPQL"
            },
            {
              "name": "http://www.kb.cert.org/vuls/id/MAPG-86EPFA",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/MAPG-86EPFA"
            },
            {
              "name": "http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html",
              "refsource": "MISC",
              "tags": [
                "Not Applicable"
              ],
              "url": "http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html"
            },
            {
              "name": "VU#362332",
              "refsource": "CERT-VN",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/362332"
            },
            {
              "name": "https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708",
              "refsource": "CONFIRM",
              "tags": [
                "Permissions Required"
              ],
              "url": "https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708"
            },
            {
              "name": "http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735",
              "refsource": "CONFIRM",
              "tags": [
                "Permissions Required"
              ],
              "url": "http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": true,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2022-08-05T18:38Z",
      "publishedDate": "2010-08-05T13:22Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2010-2965 (GCVE-0-2010-2965)

Vulnerability from cvelistv5

ghsa-4hhv-jc45-cmpc

Vulnerability from github

var-201008-0270

Vulnerability from variot

fkie_cve-2010-2965

Vulnerability from fkie_nvd

gsd-2010-2965

Vulnerability from gsd

Tags

Sightings

Nomenclature