CVE-2010-1970

Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data, and consequently gain privileges, via unknown vectors.

CVSS v2.0 4.6 MEDIUM

4.6^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02282388
http://secunia.com/advisories/40553	Vendor Advisory
http://securitytracker.com/id?1024186
http://www.vupen.com/english/advisories/2010/1792	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:hp:insight_software_installer::::::::
	cpe:2.3:a:hp:insight_software_installer:3.00:::::::*
	cpe:2.3:a:hp:insight_software_installer:3.10:::::::*

cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-07-15 12:57

Updated : 2024-02-28 11:41

NVD link : CVE-2010-1970

Mitre link : CVE-2010-1970

CVE.ORG link : CVE-2010-1970

JSON object : View

Products Affected

microsoft

windows

hp

insight_software_installer

CWE

NVD-CWE-noinfo

{"id": "CVE-2010-1970", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2010-07-15T12:57:21.987", "references": [{"url": "http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02282388", "source": "hp-security-alert@hp.com"}, {"url": "http://secunia.com/advisories/40553", "tags": ["Vendor Advisory"], "source": "hp-security-alert@hp.com"}, {"url": "http://securitytracker.com/id?1024186", "source": "hp-security-alert@hp.com"}, {"url": "http://www.vupen.com/english/advisories/2010/1792", "tags": ["Vendor Advisory"], "source": "hp-security-alert@hp.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data, and consequently gain privileges, via unknown vectors."}, {"lang": "es", "value": "Vulnerabilidad no especificada en HP Insight Software Installer para Windows anterior a v6.1 permite a usuarios locales leer o modificar datos y en consecuencia obtener privilegios, a trav\u00e9s de vectores desconocidos."}], "lastModified": "2019-10-09T23:00:43.607", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hp:insight_software_installer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E130333-9CDB-48E0-BD6F-5EEA7FEC27CA", "versionEndIncluding": "6.0"}, {"criteria": "cpe:2.3:a:hp:insight_software_installer:3.00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53CDEE45-A486-465E-A403-35A56A4ECAE7"}, {"criteria": "cpe:2.3:a:hp:insight_software_installer:3.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0134EF4-3A08-47A0-A909-1A47AA011F5A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "hp-security-alert@hp.com"}