CVE-2010-2271

Format string vulnerability in authcfg.cgi in Accoria Web Server (aka Rock Web Server) 1.4.7 allows remote attackers to have an unspecified impact via format string specifiers in the path (aka Password File) parameter.

Published: Jun 15, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-2271
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-134

Affected Software
References

Software	From	Fixed in
accoria / rock_web_server	1.4.7	1.4.7.x

http://www.ioactive.com/pdfs/AccoriaWebServer.pdf
http://www.kb.cert.org/vuls/id/245081

Vulnerability Database

CVE-2010-2271