CVE-2009-0311

Опубликовано: 27 янв. 2009

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

The Backbone service (ftbackbone.exe) in EMC AutoStart before 5.3 SP2 allows remote attackers to execute arbitrary code via a packet with a crafted value that is dereferenced as a function pointer.

Ссылки

http://osvdb.org/51566
http://secunia.com/advisories/33667
Vendor Advisory
http://www.securityfocus.com/archive/1/500350/100/0/threaded
http://www.securityfocus.com/bid/33415
http://www.securitytracker.com/id?1021636
http://zerodayinitiative.com/advisories/ZDI-09-009/
https://exchange.xforce.ibmcloud.com/vulnerabilities/48197
http://osvdb.org/51566
http://secunia.com/advisories/33667
Vendor Advisory
http://www.securityfocus.com/archive/1/500350/100/0/threaded
http://www.securityfocus.com/bid/33415
http://www.securitytracker.com/id?1021636
http://zerodayinitiative.com/advisories/ZDI-09-009/
https://exchange.xforce.ibmcloud.com/vulnerabilities/48197

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:emc:autostart:*:sp1:*:*:*:*:*:*

Версия до 5.3 (включая)

cpe:2.3:a:emc:autostart:5.3:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.10291

Средний

10 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-2jq8-xw89-gcg8

github

почти 4 года назад