CVE-2009-3573

Опубликовано: 06 окт. 2009

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Multiple insecure method vulnerabilities in the PDIControl.PDI.1 ActiveX control (PDIControl.dll) 2.2.3160.0 in EMC Captiva PixTools Distributed Imaging 2.2 allow remote attackers to create or overwrite arbitrary files via the (1) SetLogFileName and (2) WriteToLog methods.

Ссылки

http://secunia.com/advisories/36896
Vendor Advisory
http://www.securityfocus.com/bid/36566
Exploit
http://www.shinnai.net/xplits/TXT_17zVMhRhsRE6qC6DAj52.html
Exploit
URL Repurposed
http://www.vupen.com/english/advisories/2009/2808
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/53555
http://secunia.com/advisories/36896
Vendor Advisory
http://www.securityfocus.com/bid/36566
Exploit
http://www.shinnai.net/xplits/TXT_17zVMhRhsRE6qC6DAj52.html
Exploit
URL Repurposed
http://www.vupen.com/english/advisories/2009/2808
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/53555

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:emc:captiva_pixtools_distributed_imaging:2.2:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03557

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-hfjj-9f59-p559

github

почти 4 года назад