CVE-2010-4680

{"id": "CVE-2010-4680", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-01-07T12:00:50.267", "references": [{"url": "http://secunia.com/advisories/42931", "source": "cve@mitre.org"}, {"url": "http://www.cisco.com/en/US/docs/security/asa/asa82/release/notes/asarn82.pdf", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/45767", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1024963", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64606", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "The WebVPN implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) permits the viewing of CIFS shares even when CIFS file browsing has been disabled, which allows remote authenticated users to bypass intended access restrictions via CIFS requests, aka Bug ID CSCsz80777."}, {"lang": "es", "value": "La aplicaci\u00f3n WebVPN en dispositivos Cisco Adaptive Security Appliances (ASA) series 5500 con software anterior a v8.2 (3) permite la visualizaci\u00f3n de recursos compartidos de CIFS, incluso cuando se ha desactivado la navegaci\u00f3n en los ficheros CIFS, lo que permite a usuarios remotos autenticados para eludir las restricciones de acceso previstas a trav\u00e9s de peticiones CIFS, error conocido como CSCsz80777."}], "lastModified": "2023-08-11T19:03:30.373", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "808F70E1-4528-47A1-8DA8-CB90D8A166B6", "versionEndIncluding": "8.2\\(2\\)"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85ED2D96-5CC9-4851-986A-C9ED5E2D96CB"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0\\(0\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15ECB359-7290-4732-96F2-AFCEE21C7899"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0\\(2\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3DA2F01C-ECF1-477B-A413-75D0EB817079"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0\\(4\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC150564-7413-401A-9DD8-8AD773F1D8F9"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0\\(5\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0714F9E-75AD-4405-BBC3-E0D817C05EF6"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0\\(5.2\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D9649696-DE81-48C7-A276-17E1ECADAD5B"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0\\(6.7\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F31A44B7-7DD8-4ECF-9BA0-7D1983A2DB09"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7632C245-04C6-4E78-87B7-55CCCA6FD6C8"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EA0DDDD-C987-4DA6-ADEE-77B387C26A92"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E84099EB-2535-4A9F-8355-FF937CFBD122"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C599F894-DAD2-4231-8BB8-1427E7C02D60"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49696766-ECCE-4903-AA54-271EFEA58B8D"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1F60C12-71C9-47C6-B43F-A0374419D736"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C853CD9-F451-406E-A515-3BDC34E55639"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD7C28DC-B15F-486B-96F1-D08529B7374A"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B03A1408-A55A-4482-B239-B13094B13BFC"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.8:interim:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "62DC7025-F067-45CB-BEA6-ED16A5BD2896"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E623855-FB2B-4B8A-85E8-B8DC29A3FBB0"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.1\\(2\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1557499-D1A1-4A26-80DA-A3D66AA53580"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.1\\(2.5\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2649C78C-D742-4E6F-950F-54BF7CF797C3"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.1\\(2.27\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "469CFE0C-6319-46F3-8D31-4850F5E6A830"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.1\\(2.48\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4333600F-0277-4D6C-922E-53FA01CF3C2E"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.1\\(2.49\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35AFDFE9-CCC9-453B-A081-939D1D554379"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.1\\(5\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C82C545-6796-4B67-A97D-0435D41C63C5"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA336EBF-FA9A-4B80-A486-446A1C4B72F5"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8B53107-BCD0-4D3E-B090-91D6BD6139C8"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C926091-D9A6-4264-8E9A-52AFCBC09D34"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(1\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE82E4AC-BE77-4A45-839F-45163D64A4C0"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(1.22\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B84E46E-E5CA-4EEC-87C3-FD818EA37DFE"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95B934A6-6C23-4A3F-A5F1-BCE0F0F3295A"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.5\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8B25C03A-CADD-4B10-B4C9-674A4DEBDEE9"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.7\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B521F270-2D51-48BE-BC29-0EDED33FA30B"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.8\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39BA51CC-2ADA-4527-8D47-D821BBFA5EFC"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.10\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C73F417-0CF4-4E78-9B33-939F0E41994E"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.14\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67BABA2F-EE28-4914-8130-6768EC599B65"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.15\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C912270C-6ABB-4149-8E67-96028B45C312"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.16\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB2631B6-F238-4FE3-AA34-703FFB6D6803"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.17\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80F1C112-F1C1-4703-8EE0-2FC9F8B233CD"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.18\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D55D3385-FEE7-44AA-A65A-50924FDC1BFC"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.19\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC223DE2-90CA-43CD-8EBF-C9C351D10187"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2\\(2.48\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3DF7D4C-48F4-4138-80EA-7AEEB8AFE498"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E853B8BF-07F5-46DF-8DEA-302F68B8B086"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95627941-30D8-452F-B6C8-76D2BEE93514"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "364CA0EA-F85E-4C4B-96D8-A7256F413844"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67AB954E-D1F4-4B29-B782-2E9917D82DE0"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7DA3389C-86FE-45F7-97D7-E3386403944F"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4AFE6E41-E5C3-48AA-A534-A1AF3E86E3F0"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "656D49C2-4F2E-4369-8933-FF74A3CD51EF"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C68E73D6-A207-4276-A972-52B859CD958A"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F44B4A87-D033-4C3F-B1F8-BC40E2CCDC54"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1E406214-2776-42C2-B777-92E6420FBFBF"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\\(1\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73BA05D1-78A7-4F90-9448-3F2011EE3EF3"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F2C8AFA-A4B6-44A2-B00C-1950997493C0"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "465313C5-BFB9-458A-8150-8F7BA1F8C386"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2:interim:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C808D46-C846-4C53-A713-150C3FED3FAB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:5500_series_adaptive_security_appliance:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CB79D96-75EA-4B4F-99A7-9AB4158B7301"}, {"criteria": "cpe:2.3:h:cisco:asa_5500:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FCBA3A3-7C8F-481A-9BEC-78981547F8BE"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}