Unrated severityNVD Advisory· Published Jun 25, 2010· Updated Apr 29, 2026

CVE-2010-2466

Description

The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, does not properly prevent downloading of database backups, which allows remote attackers to obtain sensitive information via requests for full_*.dar files with predictable filenames.

Affected products

Linearcorp/Emerge 50
cpe:2.3:h:linearcorp:emerge_50:*:*:*:*:*:*:*:*
Linearcorp/Emerge 5000
cpe:2.3:h:linearcorp:emerge_5000:*:*:*:*:*:*:*:*
Sonitrol/Eaccess
cpe:2.3:h:sonitrol:eaccess:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

blip.tv/file/3414004nvdExploit
www.slideshare.net/shawn_merdinger/we-dont-need-no-stinkin-badges-hacking-electronic-door-access-controllersquot-shawn-merdinger-carolinaconnvdExploit
www.kb.cert.org/vuls/id/228737nvdUS Government Resource
www.darkreading.com/blog/archives/2010/04/attacking_door.htmlnvd
www.securityinfowatch.com/Executives+Columns+%2526+Features/1316527nvd
exchange.xforce.ibmcloud.com/vulnerabilities/59826nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000