Vulnerability Description
Fenrir Sleipnir 2.9.6 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site.
CVSS Score
5.8
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fenrir-Inc | Sleipnir | <= 2.9.6 |
Related Weaknesses (CWE)
References
- http://fenrir-inc.blogspot.com/2010/11/vulnerability-regarding-allow-paste.htmlPatch
- http://jvn.jp/en/jp/JVN64764004/index.html
- http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000057.html
- http://secunia.com/advisories/42427Vendor Advisory
- http://www.fenrir.co.jp/blog/2010/11/post_47.htmlPatch
- http://www.osvdb.org/69604
- http://fenrir-inc.blogspot.com/2010/11/vulnerability-regarding-allow-paste.htmlPatch
- http://jvn.jp/en/jp/JVN64764004/index.html
- http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000057.html
- http://secunia.com/advisories/42427Vendor Advisory
- http://www.fenrir.co.jp/blog/2010/11/post_47.htmlPatch
- http://www.osvdb.org/69604
FAQ
What is CVE-2010-3918?
CVE-2010-3918 is a vulnerability with a CVSS score of 5.8 (MEDIUM). Fenrir Sleipnir 2.9.6 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site.
How severe is CVE-2010-3918?
CVE-2010-3918 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-3918?
Check the references section above for vendor advisories and patch information. Affected products include: Fenrir-Inc Sleipnir.