exploitDog

CVE-2009-2963

Опубликовано: 25 авг. 2009

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Unspecified vulnerability in the update feature in Toolbar Uninstaller 1.0.2 allows remote attackers to force the download and execution of arbitrary files via attack vectors related to a "malformed update url and a malformed update website."

Ссылки

http://secunia.com/advisories/36366
Vendor Advisory
http://www.decomputeur.nl/pdf/security-risk-found.pdf
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/52607
http://secunia.com/advisories/36366
Vendor Advisory
http://www.decomputeur.nl/pdf/security-risk-found.pdf
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/52607

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:decomputeur:toolbar_uninstaller:1.0.2:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.01858

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-m7qq-ch2w-w47w

github

почти 4 года назад

Unspecified vulnerability in the update feature in Toolbar Uninstaller 1.0.2 allows remote attackers to force the download and execution of arbitrary files via attack vectors related to a "malformed update url and a malformed update website."

EPSS

Процентиль: 83%

0.01858

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-noinfo