CVE-2010-2965
Published Aug 5, 2010
Last updated 2 years ago
Overview
- Description
- The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185, a related issue to CVE-2005-3804.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-863
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:rockwellautomation:1756-enbt\\/a_firmware:3.2.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "22C36961-F714-459C-ADF9-107C8EE99115"
},
{
"criteria": "cpe:2.3:o:rockwellautomation:1756-enbt\\/a_firmware:3.6.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4B6FA17-2C3D-45F8-B327-8760DD3757CF"
},
{
"criteria": "cpe:2.3:o:windriver:vxworks:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3F579A94-D4C9-4A16-9A1A-DE62C6F6ADC9",
"versionEndIncluding": "6.9.4.12"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:rockwellautomation:1756-enbt\\/a:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0A3DE5C9-82F9-4D92-B735-D85816EE8557"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]