CVE-2009-1800

Опубликовано: 28 мая 2009

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Stack-based buffer overflow in the Chinagames CGAgent ActiveX control 1.x in CGAgent.dll, as distributed in Chinagames iGame 2009, allows remote attackers to execute arbitrary code via a long argument to the CreateChinagames method, as exploited in the wild in April and May 2009. NOTE: some of these details are obtained from third party information.

Ссылки

http://bbs.pediy.com/showthread.php?t=87615
Exploit
http://downloads.securityfocus.com/vulnerabilities/exploits/34871.html
Exploit
http://hi.baidu.com/wi4r/blog/item/8b1c06fb2e3de8819f514671.html
Exploit
http://secunia.com/advisories/35005
Vendor Advisory
http://www.cisrt.org/enblog/read.php?245
Exploit
http://www.securityfocus.com/bid/34871
Exploit
http://bbs.pediy.com/showthread.php?t=87615
Exploit
http://downloads.securityfocus.com/vulnerabilities/exploits/34871.html
Exploit
http://hi.baidu.com/wi4r/blog/item/8b1c06fb2e3de8819f514671.html
Exploit
http://secunia.com/advisories/35005
Vendor Advisory
http://www.cisrt.org/enblog/read.php?245
Exploit
http://www.securityfocus.com/bid/34871
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:chinagames:igame:2009:*:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.07891

Низкий

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-35x6-cfx8-j8gm

github

почти 4 года назад