Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-3561

EPSS 4.51% · P89
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-3561

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Unspecified vulnerability in the CORBA component in Oracle Java SE and Java for Business 6 Update 21 and 5.0 Update 25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU. Oracle has not commented on claims from a reliable downstream vendor that this involves the use of the privileged accept method in the ServerSocket class, which does not limit which hosts can connect and allows remote attackers to bypass intended network access restrictions.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Oracle Java SE和Java for Business CORBA组件远程安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Oracle Java SE是美国甲骨文(Oracle)公司的一套标准版Java平台,用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。 Oracle Java SE和Java for Business 6 Update 21,5.0 Update 25版本的CORBA组件中存在未明漏洞。远程攻击者可以借助未知向量影响机密性,完整性和可用性。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2010-3561

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2010-3561

登录查看更多情报信息。

Same Patch Batch · n/a · 2010-10-19 · 48 CVEs total

CVE-2007-6741G.rodola pyftpdlib FTPServer.py文件权限许可和访问控制漏洞
CVE-2008-7264G.Rodola pyftpdlib ftpserver.py文件输入验证漏洞
CVE-2009-5011G.Rodola pyftpdlib ftpserver.py文件竞争条件漏洞
CVE-2010-3158Lhaplus非信任搜索路径漏洞
CVE-2010-3492Python asyncore模块设计错误漏洞
CVE-2010-3493Python smtpd模块smtpd.py文件多个竞争条件漏洞
CVE-2010-3494G.Rodola pyftpdlib ftpserver.py函数竞争条件漏洞
CVE-2010-3495Zope Object Database ZEO/StorageServer.py文件竞争条件漏洞
CVE-2010-3157Kmonos XacRett非信任搜索路径漏洞
CVE-2008-7262G.Rodola pyftpdlib FTPServer.py文件多个目录遍历漏洞
CVE-2008-7263G.Rodola pyftpdlib ftpserver.py文件授权问题漏洞
CVE-2007-6740G.rodola pyftpdlib ftpserver.py文件权限许可和访问控制漏洞
CVE-2007-6739G.rodola pyftpdlib ftpserver.py文件输入验证漏洞
CVE-2007-6738G.rodola pyftpdlib PASV命令相关端口设计错误
CVE-2007-6737G.rodola pyftpdlib FTPServer.py文件attempted_logins计数授权问题漏洞
CVE-2007-6736G.rodola pyftpdlib FTPServer.py文件多个目录遍历漏洞
CVE-2010-3976Adobe Flash Player不可信搜索路径漏洞
CVE-2010-3975Adobe Flash Player非信任搜索路径漏洞
CVE-2010-3574Oracle Java SE和Java for Business Networking组件未明漏洞
CVE-2010-3573Oracle Java SE和Java for Business Networking组件未明漏洞

Showing top 20 of 48 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2010-3561

No comments yet

Leave a comment