Vulnerability Details CVE-2010-3918
Fenrir Sleipnir 2.9.6 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.2%
CVSS Severity
CVSS v2 Score 5.8
References
- http://fenrir-inc.blogspot.com/2010/11/vulnerability-regarding-allow-paste.html
- http://jvn.jp/en/jp/JVN64764004/index.html
- http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000057.html
- http://secunia.com/advisories/42427
- http://www.fenrir.co.jp/blog/2010/11/post_47.html
- http://www.osvdb.org/69604
- http://fenrir-inc.blogspot.com/2010/11/vulnerability-regarding-allow-paste.html
- http://jvn.jp/en/jp/JVN64764004/index.html
- http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000057.html
- http://secunia.com/advisories/42427
- http://www.fenrir.co.jp/blog/2010/11/post_47.html
- http://www.osvdb.org/69604
Products affected by CVE-2010-3918
-
cpe:2.3:a:fenrir-inc:sleipnir:2.5.10
-
cpe:2.3:a:fenrir-inc:sleipnir:2.5.11
-
cpe:2.3:a:fenrir-inc:sleipnir:2.5.12
-
cpe:2.3:a:fenrir-inc:sleipnir:2.5.14
-
cpe:2.3:a:fenrir-inc:sleipnir:2.7.2
-
cpe:2.3:a:fenrir-inc:sleipnir:2.8.0
-
cpe:2.3:a:fenrir-inc:sleipnir:2.8.1
-
cpe:2.3:a:fenrir-inc:sleipnir:2.8.2
-
cpe:2.3:a:fenrir-inc:sleipnir:2.8.3
-
cpe:2.3:a:fenrir-inc:sleipnir:2.9.1
-
cpe:2.3:a:fenrir-inc:sleipnir:2.9.2
-
cpe:2.3:a:fenrir-inc:sleipnir:2.9.3
-
cpe:2.3:a:fenrir-inc:sleipnir:2.9.4
-
cpe:2.3:a:fenrir-inc:sleipnir:2.9.5