CVE-2010-1577

Published Jul 28, 2010

Last updated 7 years ago

Overview

Description: Directory traversal vulnerability in Cisco Internet Streamer, as used in Cisco Content Delivery System (CDS) 2.2.x, 2.3.x, 2.4.x, and 2.5.x before 2.5.7 allows remote attackers to read arbitrary files via a crafted URL.
Source: ykramarz@cisco.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-22

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.2\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A355FDB-1D1A-4AD2-A7EB-7F6BD0C0510D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.3\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D98295A3-A1F9-4DCC-A0B1-76B0A5491324"
          },
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.3\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8657D61D-BA06-4D0E-AAD2-E43101992509"
          },
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.3\\(5\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "46ED5C00-821B-4833-B859-D2CB4C1EF691"
          },
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.3\\(7\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A75C02F-61B8-4831-A1F7-7888DF0C164C"
          },
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.3\\(9\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16B00678-CF1E-4971-B2BE-4A86D0AEB825"
          },
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.4\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88C2AD41-B550-4EE8-9276-15B999A812AB"
          },
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.4\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D8F27D26-AB37-4F78-A866-7A3FF4BA048C"
          },
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.4\\(5\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB985228-A581-4E98-B5D0-788B016B27AC"
          },
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.5\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48B82A9D-FEEE-4734-95BF-C1AEDC330349"
          },
          {
            "criteria": "cpe:2.3:a:cisco:internet_streamer:2.5\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A55DDBD-2FAC-442C-8B09-38BBC6C93E7C"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:content_delivery_system:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "052532BD-AE1E-47D8-8814-B6B873CCFAB2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References