CVE-2010-0689

The ExecuteExe method in the DVBSExeCall Control ActiveX control 1.0.0.1 in DVBSExeCall.ocx in DATEV Base System (aka Grundpaket Basis) allows remote attackers to execute arbitrary commands via unspecified vectors.
Configurations

Configuration 1 (hide)

cpe:2.3:a:datev:base_system:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:12

Type Values Removed Values Added
References () http://osvdb.org/62564 - () http://osvdb.org/62564 -
References () http://secunia.com/advisories/38716 - Vendor Advisory () http://secunia.com/advisories/38716 - Vendor Advisory
References () http://sotiriu.de/adv/NSOADV-2010-003.txt - () http://sotiriu.de/adv/NSOADV-2010-003.txt -
References () http://sotiriu.de/demos/videos/nso-2010-003.html - Exploit () http://sotiriu.de/demos/videos/nso-2010-003.html - Exploit
References () http://www.datev.de/info-db/1080162 - () http://www.datev.de/info-db/1080162 -
References () http://www.securityfocus.com/archive/1/509743/100/0/threaded - () http://www.securityfocus.com/archive/1/509743/100/0/threaded -
References () http://www.securityfocus.com/bid/38415 - () http://www.securityfocus.com/bid/38415 -
References () http://www.vupen.com/english/advisories/2010/0474 - () http://www.vupen.com/english/advisories/2010/0474 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/56530 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/56530 -

Information

Published : 2010-02-26 19:30

Updated : 2024-11-21 01:12


NVD link : CVE-2010-0689

Mitre link : CVE-2010-0689

CVE.ORG link : CVE-2010-0689


JSON object : View

Products Affected

datev

  • base_system