CVE-2010-1686

Sažetak

Stack-based buffer overflow in (1) Urgent Backup 3.20, and (2) ABC Backup Pro 5.20 and ABC Backup 5.50, allows user-assisted remote attackers to execute arbitrary code via a crafted ZIP archive.

Reference

http://secunia.com/advisories/39699
http://secunia.com/advisories/39701
http://www.corelan.be:8800/advisories.php?id=CORELAN-10-034
http://www.vupen.com/english/advisories/2010/1046
http://www.vupen.com/english/advisories/2010/1047

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

12-05-2010 - 00:41

Objavljeno

05-05-2010 - 13:22