CVE-2010-3719

CWE-94Code Injection4 documents4 sources
Severity
8.5HIGH
EPSS
9.2%
top 7.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Symantec IM Manager
Timeline
PublishedFeb 2
Latest updateMay 14

Description

Eval injection vulnerability in IMAdminSchedTask.asp in the administrative interface for Symantec IM Manager 8.4.16 and earlier allows remote attackers to execute arbitrary code via unspecified parameters to the ScheduleTask method.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 6.8 | Impact: 10.0

Affected Packages1 packages

NVDsymantec/im_manager8.4.16+18

🔴Vulnerability Details

2
GHSA
GHSA-mr9w-cm2q-46cm: Eval injection vulnerability in IMAdminSchedTask2022-05-14
CVEList
CVE-2010-3719: Eval injection vulnerability in IMAdminSchedTask2011-02-02

💥Exploits & PoCs

1
Exploit-DB
Adobe Illustrator CS4 14.0.0 - Postscript (.eps) Buffer Overflow (Metasploit)2010-09-25
CVE-2010-3719 (HIGH CVSS 8.5) | Eval injection vulnerability in IMA | cvebase.io