CVE-2010-1971

Description

Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, a different vulnerability than CVE-2010-1968.

Affected Software
References

Software	From	Fixed in
hp / insight_software_installer	-	6.0.x
hp / insight_software_installer	3.00	3.00.x
hp / insight_software_installer	3.10	3.10.x

http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02282388
http://secunia.com/advisories/40553
http://securitytracker.com/id?1024186
http://www.vupen.com/english/advisories/2010/1792

Severity: Medium

CVE: CVE-2010-1971
Published: Jul 15, 2010
Updated: Apr 13, 2023
Exploit:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-352

CVE-2010-1971

Description

Details

CVSS v2

CWEs