CVE-2010-2809

CVSS V2 Medium 6.8 CVSS V3 None

Description

The default configuration of the <Button2> binding in Uzbl before 2010.08.05 does not properly use the @SELECTED_URI feature, which allows user-assisted remote attackers to execute arbitrary commands via a crafted HREF attribute of an A element in an HTML document.

Overview

CVE ID
CVE-2010-2809

Assigner
secalert@redhat.com

Vulnerability Status
Modified

Published Version
2010-08-19T22:00:02

Last Modified Date
2017-08-17T01:32:49

Weakness Enumerations

CWE	URL
CWE-94	http://cwe.mitre.org/data/definitions/94.html

CPE Configuration (Product)

CPE	Vulnerable	Operator	Version End
cpe:2.3:a:uzbl:uzbl::::::::	1	OR	2010.04.03
cpe:2.3:a:uzbl:uzbl:2009.12.22:::::::*	1	OR
cpe:2.3:a:uzbl:uzbl:2010.01.04:::::::*	1	OR

CVSS Version 2

Version
2.0

Vector String
AV:N/AC:M/Au:N/C:P/I:P/A:P

Access Vector
NETWORK

Access Compatibility
MEDIUM

Authentication
NONE

Confidentiality Impact
PARTIAL

Integrity Impact
PARTIAL

Availability Impact
PARTIAL

Base Score
6.8

Severity
MEDIUM

Exploitability Score
8.6

Impact Score
6.4

References

Reference URL	Reference Tags
https://bugzilla.redhat.com/show_bug.cgi?id=621964
http://www.uzbl.org/news.php?id=29	Patch
https://bugzilla.redhat.com/show_bug.cgi?id=621965
http://marc.info/?l=oss-security&m=128111994317381&w=2
http://www.uzbl.org/bugs/index.php?do=details&task_id=240
http://www.securityfocus.com/bid/42297
http://github.com/pawelz/uzbl/commit/342f292c27973c9df5f631a38bd12f14a9c5cdc2
http://marc.info/?l=oss-security&m=128111493509265&w=2
http://github.com/Dieterbe/uzbl/commit/9cc39cb5c9396be013b5dc2ba7e4b3eaa647e975
https://exchange.xforce.ibmcloud.com/vulnerabilities/61011

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2010-2809
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2809

History

Created	Old Value	New Value	Data Type	Notes
2022-05-10 08:56:40				Added to TrackCVE