CVE-2010-2629

Severity Score

7.5

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The Cisco Content Services Switch (CSS) 11500 with software 8.20.4.02 and the Application Control Engine (ACE) 4710 with software A2(3.0) do not properly handle LF header terminators in situations where the GET line is terminated by CRLF, which allows remote attackers to conduct HTTP request smuggling attacks and possibly bypass intended header insertions via crafted header data, as demonstrated by an LF character between the ClientCert-Subject and ClientCert-Subject-CN headers. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-1576.

Cisco Content Services Switch (CSS) 11500 con software v8.20.4.02 y Application Control Engine (ACE) 4710 con software A2(3.0) no maneja adecuadamente las terminacioens de cabecera LF en situaciones donde la línea GET es terminada con CRLF, permitiendo a atacantes remotos llevar a cabo ataques contrabando de peticiones HTTP y probablemente superar la inserción de cabeceras de datos privistas, como quedó demostrado por el carácter LF entre las cabeceras ClientCert-Subject y ClientCert-Subject-CN. NOTA: esta vulnerabilidad existe debido a una solución incompleta de CVE-2010-1576.

*Credits: N/A

CVSS Scores

NISTv2 7.5

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2010-07-06 CVE Reserved
2010-07-06 CVE Published
2023-03-08 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation

CAPEC

References (5)

URL	Tag	Source
http://securitytracker.com/id?1024167	Vdb Entry
http://securitytracker.com/id?1024168	Vdb Entry
http://www.securityfocus.com/archive/1/512144/100/0/threaded	Mailing List
http://www.securityfocus.com/bid/41315	Vdb Entry
http://www.vsecurity.com/resources/advisory/20100702-1	X_refsource_misc

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"		Content Services Switch 11500 Search vendor "Cisco" for product "Content Services Switch 11500"				<= 8.20.3.03 Search vendor "Cisco" for product "Content Services Switch 11500" and version " <= 8.20.3.03"		-		Affected
Cisco Search vendor "Cisco"		Content Services Switch 11500 Search vendor "Cisco" for product "Content Services Switch 11500"				8.20.0.01 Search vendor "Cisco" for product "Content Services Switch 11500" and version "8.20.0.01"		-		Affected
Cisco Search vendor "Cisco"		Content Services Switch 11500 Search vendor "Cisco" for product "Content Services Switch 11500"				08.20.1.01 Search vendor "Cisco" for product "Content Services Switch 11500" and version "08.20.1.01"		-		Affected
Cisco Search vendor "Cisco"		Content Services Switch 11500 Search vendor "Cisco" for product "Content Services Switch 11500"				8.20.1.01 Search vendor "Cisco" for product "Content Services Switch 11500" and version "8.20.1.01"		-		Affected
Cisco Search vendor "Cisco"		Content Services Switch 11500 Search vendor "Cisco" for product "Content Services Switch 11500"				8.20.2.01 Search vendor "Cisco" for product "Content Services Switch 11500" and version "8.20.2.01"		-		Affected
Cisco Search vendor "Cisco"		Ace 4710 Search vendor "Cisco" for product "Ace 4710"				<= a3\(2.5\) Search vendor "Cisco" for product "Ace 4710" and version " <= a3\(2.5\)"		-		Affected
Cisco Search vendor "Cisco"		Ace 4710 Search vendor "Cisco" for product "Ace 4710"				a1\(2.0\) Search vendor "Cisco" for product "Ace 4710" and version "a1\(2.0\)"		-		Affected
Cisco Search vendor "Cisco"		Ace 4710 Search vendor "Cisco" for product "Ace 4710"				a1\(8.0\) Search vendor "Cisco" for product "Ace 4710" and version "a1\(8.0\)"		-		Affected