CVE-2010-10001

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 28-03-2022 11:15

Last modified: - 05-04-2022 10:31

Total changes: - 3

Description

A vulnerability, which was classified as problematic, was found in Shemes GrabIt up to 1.7.2 Beta 4. This affects the component NZB Date Parser. The manipulation of the argument date with the input 1000000000000000 as part of a NZB File leads to a denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Low

Attack complexity

Local

Attack vector

High

Availability

None

Confidentiality

None

Integrity

None

Privileges required

Unchanged

Scope

Required

User interaction

5.5

Base score

1.8

3.6

Exploitability score

Impact score

Verification logic

vendor=shemes AND product=grabit AND versionEndExcluding=1.7.2

vendor=shemes AND product=grabit AND version=1.7.2 AND update=beta

vendor=shemes AND product=grabit AND version=1.7.2 AND update=beta2

vendor=shemes AND product=grabit AND version=1.7.2 AND update=beta3

vendor=shemes AND product=grabit AND version=1.7.2 AND update=beta4

Reference

Keywords

CVE-2010-10001

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2010-10001

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures