NVD

Id
13936  
Name
CVE-2010-2466  
Description
The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, does not properly prevent downloading of database backups, which allows remote attackers to obtain sensitive information via requests for full_*.dar files with predictable filenames.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-18  
Published
2010-06-25  
Modified Date
2012-11-05  
Seq
2010-2466  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
77121 13936 CVE-2010-2466 http://blip.tv/file/3414004  View
77122 13936 CVE-2010-2466 http://www.darkreading.com/blog/archives/2010/04/attacking_door.html  View
77123 13936 CVE-2010-2466 VU#228737  View
77124 13936 CVE-2010-2466 http://www.securityinfowatch.com/Executives+Columns+%2526+Features/1316527?pageNum=2  View
77125 13936 CVE-2010-2466 http://www.slideshare.net/shawn_merdinger/we-dont-need-no-stinkin-badges-hacking-electronic-door-access-controllersquot-shawn-merdinger-carolinacon  View
77126 13936 CVE-2010-2466 netbox-database-backups-info-disclosure(59826)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
35922 JVNDB-2010-001702 S2 Netbox に脆弱性 S2 Netbox には、認証が適切に行われない脆弱性が存在します。 CVE-2010-2466 45046 CVE-2010-2466 13936 5 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001702.html 2010-06-28 2010-07-16 View