CVE-2009-0215

Опубликовано: 25 мар. 2009

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Stack-based buffer overflow in the GetXMLValue method in the IBM Access Support ActiveX control in IbmEgath.dll, as distributed on IBM and Lenovo computers, allows remote attackers to execute arbitrary code via unspecified vectors.

Ссылки

http://osvdb.org/52958
http://secunia.com/advisories/34470
http://www.kb.cert.org/vuls/id/340420
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/34228
http://www.vupen.com/english/advisories/2009/0824
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/49409
http://osvdb.org/52958
http://secunia.com/advisories/34470
http://www.kb.cert.org/vuls/id/340420
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/34228
http://www.vupen.com/english/advisories/2009/0824
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/49409

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:access_support_activex_control:3.20.284.0:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.63709

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-3539-rp84-xw2w

github

почти 4 года назад