CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-0689

The ExecuteExe method in the DVBSExeCall Control ActiveX control 1.0.0.1 in DVBSExeCall.ocx in DATEV Base System (aka Grundpaket Basis) allows remote attackers to execute arbitrary commands via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.063

EPSS Ranking 90.5%

CVSS Severity

CVSS v2 Score 10.0

References

http://osvdb.org/62564
http://secunia.com/advisories/38716
http://sotiriu.de/adv/NSOADV-2010-003.txt
http://sotiriu.de/demos/videos/nso-2010-003.html
http://www.datev.de/info-db/1080162
http://www.securityfocus.com/archive/1/509743/100/0/threaded
http://www.securityfocus.com/bid/38415
http://www.vupen.com/english/advisories/2010/0474
https://exchange.xforce.ibmcloud.com/vulnerabilities/56530
http://osvdb.org/62564
http://secunia.com/advisories/38716
http://sotiriu.de/adv/NSOADV-2010-003.txt
http://sotiriu.de/demos/videos/nso-2010-003.html
http://www.datev.de/info-db/1080162
http://www.securityfocus.com/archive/1/509743/100/0/threaded
http://www.securityfocus.com/bid/38415
http://www.vupen.com/english/advisories/2010/0474
https://exchange.xforce.ibmcloud.com/vulnerabilities/56530

Products affected by CVE-2010-0689

Datev » Base System » Version: Any

cpe:2.3:a:datev:base_system:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-0689

Products

Pricing

Contact Us