Vulnerability Details : CVE-2010-0104
Unspecified vulnerability in the Broadcom Integrated NIC Management Firmware 1.x before 1.40.0.0 and 8.x before 8.08 on the HP Small Form Factor and Microtower platforms allows remote attackers to execute arbitrary code via unknown vectors.
Vulnerability category: Execute code
Products affected by CVE-2010-0104
- Broadcom » Broadcom » Update 8.0.4Versions up to, including, (<=) integrated_nic_management_firmwarecpe:2.3:h:broadcom:broadcom:*:8.0.4:*:*:*:*:*:*When used together with: HP » Compaq Dc5700 Pro Microtower PcWhen used together with: HP » Compaq Dc5700 Small Form Factor PcWhen used together with: HP » Compaq Dc5750 Microtower PcWhen used together with: HP » Compaq Dc5750 Small Form Factor PcWhen used together with: HP » Compaq Dc5850 Microtower PcWhen used together with: HP » Compaq Dc5850 Small Form Factor PcWhen used together with: HP » Compaq Dc7600 Convertible Minitower PcWhen used together with: HP » Compaq Dc7600 Desktop PcWhen used together with: HP » Compaq Dc7600 Small Form Factor PcWhen used together with: HP » Compaq Dc7600 Ultra-slim Desktop PcWhen used together with: HP » Compaq Dx7200 Microtower PcWhen used together with: HP » Compaq Rp3000 Point Of Sale SystemWhen used together with: HP » Compaq Rp5700 Point Of Sale System
- Broadcom » Broadcom » Update 1.24.0.9Versions up to, including, (<=) integrated_nic_management_firmwarecpe:2.3:h:broadcom:broadcom:*:1.24.0.9:*:*:*:*:*:*When used together with: HP » Compaq 6005 Pro Microtower PcWhen used together with: HP » Compaq 6005 Small Form Factor Pc
Exploit prediction scoring system (EPSS) score for CVE-2010-0104
7.67%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 94 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2010-0104
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
References for CVE-2010-0104
-
http://www.kb.cert.org/vuls/id/512705
VU#512705 - Broadcom NetXtreme management firmware ASF buffer overflowUS Government Resource
-
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02048471
Patch;Vendor Advisory
-
http://www.vupen.com/english/advisories/2010/0631
Webmail | OVH- OVHVendor Advisory
-
http://securitytracker.com/id?1023710
HP Small Form Factor or Microtower PC Flaw in Broadcom NIC Firmware Lets Remote Users Execute Arbitrary Code - SecurityTracker
-
http://www.securityfocus.com/bid/38759
Broadcom NetXtreme ASF Packet Handling Remote Code Execution Vulnerability
Jump to