CVE-2009-4225

Опубликовано: 08 дек. 2009

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Stack-based buffer overflow in the PestPatrol ActiveX control (ppctl.dll) 5.6.7.9 in CA eTrust PestPatrol allows remote attackers to execute arbitrary code via a long argument to the Initialize method.

Ссылки

http://www.fortiguard.com/encyclopedia/vulnerability/ca.etrust.pestpatrol.ppctl.dll.activex.access.html
http://www.metasploit.com/redmine/projects/framework/repository/revisions/7167/entry/modules/exploits/windows/fileformat/etrust_pestscan.rb
Exploit
http://www.securityfocus.com/bid/37133
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/54458
http://www.fortiguard.com/encyclopedia/vulnerability/ca.etrust.pestpatrol.ppctl.dll.activex.access.html
http://www.metasploit.com/redmine/projects/framework/repository/revisions/7167/entry/modules/exploits/windows/fileformat/etrust_pestscan.rb
Exploit
http://www.securityfocus.com/bid/37133
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/54458

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:ca:etrust_pestpatrole_ppctl.dll_activex:5.6.7.9:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.65811

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-xv73-w5x5-mf3h

github

почти 4 года назад