CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-0388

Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in the encoding attribute of the XML declaration in a PROPFIND request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.02

EPSS Ranking 82.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://intevydis.blogspot.com/2010/01/sun-java-system-web-server-70-webdav.html
http://www.securityfocus.com/bid/37910
https://exchange.xforce.ibmcloud.com/vulnerabilities/55812
http://intevydis.blogspot.com/2010/01/sun-java-system-web-server-70-webdav.html
http://www.securityfocus.com/bid/37910
https://exchange.xforce.ibmcloud.com/vulnerabilities/55812

Products affected by CVE-2010-0388

Sun » Java System Web Server » Version: 7.0

cpe:2.3:a:sun:java_system_web_server:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-0388

Products

Pricing

Contact Us