Vulnerability Details CVE-2010-1577
Directory traversal vulnerability in Cisco Internet Streamer, as used in Cisco Content Delivery System (CDS) 2.2.x, 2.3.x, 2.4.x, and 2.5.x before 2.5.7 allows remote attackers to read arbitrary files via a crafted URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.6%
CVSS Severity
CVSS v2 Score 7.8
References
- http://osvdb.org/66508
- http://secunia.com/advisories/40701
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3bd1c.shtml
- http://www.securitytracker.com/id?1024234
- http://www.vupen.com/english/advisories/2010/1881
- https://exchange.xforce.ibmcloud.com/vulnerabilities/60567
- http://osvdb.org/66508
- http://secunia.com/advisories/40701
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3bd1c.shtml
- http://www.securitytracker.com/id?1024234
- http://www.vupen.com/english/advisories/2010/1881
- https://exchange.xforce.ibmcloud.com/vulnerabilities/60567
Products affected by CVE-2010-1577
-
cpe:2.3:a:cisco:content_delivery_system:*
-
cpe:2.3:a:cisco:internet_streamer:2.2(1)
-
cpe:2.3:a:cisco:internet_streamer:2.3(1)
-
cpe:2.3:a:cisco:internet_streamer:2.3(3)
-
cpe:2.3:a:cisco:internet_streamer:2.3(5)
-
cpe:2.3:a:cisco:internet_streamer:2.3(7)
-
cpe:2.3:a:cisco:internet_streamer:2.3(9)
-
cpe:2.3:a:cisco:internet_streamer:2.4(1)
-
cpe:2.3:a:cisco:internet_streamer:2.4(3)
-
cpe:2.3:a:cisco:internet_streamer:2.4(5)
-
cpe:2.3:a:cisco:internet_streamer:2.5(1)
-
cpe:2.3:a:cisco:internet_streamer:2.5(3)