CVE-2009-0305

Опубликовано: 10 фев. 2009

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Multiple stack-based buffer overflows in the Research in Motion RIM AxLoader ActiveX control in AxLoader.ocx and AxLoader.dll in BlackBerry Application Web Loader 1.0 allow remote attackers to execute arbitrary code via unspecified use of the (1) load or (2) loadJad method.

Ссылки

http://blackberry.com/btsc/KB16248
Patch
Vendor Advisory
http://osvdb.org/51833
http://secunia.com/advisories/33847
Vendor Advisory
http://www.kb.cert.org/vuls/id/131100
US Government Resource
http://www.microsoft.com/technet/security/advisory/960715.mspx
http://www.securityfocus.com/bid/33663
http://blackberry.com/btsc/KB16248
Patch
Vendor Advisory
http://osvdb.org/51833
http://secunia.com/advisories/33847
Vendor Advisory
http://www.kb.cert.org/vuls/id/131100
US Government Resource
http://www.microsoft.com/technet/security/advisory/960715.mspx
http://www.securityfocus.com/bid/33663

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:research_in_motion_limited:blackberry_application_web_loader:1.0:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.48109

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-qrjg-9vj5-93pc

github

почти 4 года назад