CVE-2010-3753
Openswan: Gateway arbitrary execution via shell metacharacters in the cisco_banner
Severity Score
6.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 allows remote authenticated gateways to execute arbitrary commands via shell metacharacters in the cisco_banner (aka server_banner) field, a different vulnerability than CVE-2010-3308.
programs/pluto/xauth.c en el cliente en Openswan v2.6.26 a v2.6.28 permite ejecutar, a gateways autenticados remotos, comandos de su elección a través de metacaracteres encubiertos en el campo cisco_banner (también conocido como server_banner). Se trata de una vulnerabilidad diferente a CVE-2010-3308.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2010-10-05 CVE Reserved
- 2010-10-05 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/43588 | Vdb Entry | |
| http://www.securitytracker.com/id?1024749 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.openswan.org/download/CVE-2010-3308/openswan-2.6.26-2.6.28-CVE-2010-330x.patch | 2019-07-29 |
| URL | Date | SRC |
|---|---|---|
| http://www.openswan.org/download/CVE-2010-3308/CVE-2010-3308.txt | 2019-07-29 | |
| http://www.redhat.com/support/errata/RHSA-2010-0892.html | 2019-07-29 | |
| http://www.vupen.com/english/advisories/2010/2526 | 2019-07-29 | |
| https://access.redhat.com/security/cve/CVE-2010-3753 | 2010-11-16 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=640715 | 2010-11-16 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.26 Search vendor "Xelerance" for product "Openswan" and version "2.6.26" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.27 Search vendor "Xelerance" for product "Openswan" and version "2.6.27" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.28 Search vendor "Xelerance" for product "Openswan" and version "2.6.28" | - |
Affected
| ||||||