exploitDog

CVE-2010-1517

Опубликовано: 02 авг. 2010

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

The GIGABYTE Dldrv2 ActiveX control 1.4.206.11 allows remote attackers to (1) download arbitrary programs onto a client system, and execute these programs, via vectors involving the dl method; and (2) download arbitrary programs onto a client system via vectors involving the SetDLInfo method in conjunction with the Bdl method.

Ссылки

http://secunia.com/advisories/40161
Vendor Advisory
http://secunia.com/secunia_research/2010-85/
Vendor Advisory
http://secunia.com/advisories/40161
Vendor Advisory
http://secunia.com/secunia_research/2010-85/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gigabyte:dldrv2_activex_control:1.4.206.11:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.007

Низкий

10 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-4cvh-cj9w-82gp

github

больше 3 лет назад

The GIGABYTE Dldrv2 ActiveX control 1.4.206.11 allows remote attackers to (1) download arbitrary programs onto a client system, and execute these programs, via vectors involving the dl method; and (2) download arbitrary programs onto a client system via vectors involving the SetDLInfo method in conjunction with the Bdl method.

EPSS

Процентиль: 71%

0.007

Низкий

10 Critical

CVSS2

Дефекты

CWE-20