CVE-2010-2466

N/A Unknown
Published: June 25, 2010 Modified: April 29, 2026
View on NVD

Description

The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, does not properly prevent downloading of database backups, which allows remote attackers to obtain sensitive information via requests for full_*.dar files with predictable filenames.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://blip.tv/file/3414004
Source: cve@mitre.org
Exploit
http://www.darkreading.com/blog/archives/2010/04/attacking_door.html
Source: cve@mitre.org
http://www.kb.cert.org/vuls/id/228737
Source: cve@mitre.org
US Government Resource
http://www.securityinfowatch.com/Executives+Columns+%2526+Features/1316527?pageNum=2
Source: cve@mitre.org
http://www.slideshare.net/shawn_merdinger/we-dont-need-no-stinkin-badges-hacking-electronic-door-access-controllersquot-shawn-merdinger-carolinacon
Source: cve@mitre.org
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/59826
Source: cve@mitre.org
http://blip.tv/file/3414004
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
http://www.darkreading.com/blog/archives/2010/04/attacking_door.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.kb.cert.org/vuls/id/228737
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.securityinfowatch.com/Executives+Columns+%2526+Features/1316527?pageNum=2
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.slideshare.net/shawn_merdinger/we-dont-need-no-stinkin-badges-hacking-electronic-door-access-controllersquot-shawn-merdinger-carolinacon
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/59826
Source: af854a3a-2127-422b-91ae-364da2661108

12 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.9%
75th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-264

Affected Vendors

s2sys linearcorp sonitrol

Related CVEs

CVE-2026-44403 7.2
CVE-2026-44246 7.2
CVE-2026-44240 7.5
CVE-2026-44232 N/A
CVE-2026-44224 N/A