Lucene search

[email protected]CVE-2009-2963

HistoryAug 25, 2009 - 5:30 p.m.

CVE-2009-2963

2009-08-2517:30:00

[email protected]

web.nvd.nist.gov

cve-2009-2963

toolbar uninstaller

remote attackers

arbitrary files

update feature

vulnerability

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

Low

0.031 Low

EPSS

Percentile

91.1%

JSON

Unspecified vulnerability in the update feature in Toolbar Uninstaller 1.0.2 allows remote attackers to force the download and execution of arbitrary files via attack vectors related to a “malformed update url and a malformed update website.”

Affected configurations

NVD

Node

decomputeurtoolbar_uninstallerMatch1.0.2

CPENameOperatorVersion
decomputeur:toolbar_uninstallerdecomputeur toolbar uninstallereq1.0.2

CPE	Name	Operator	Version
decomputeur:toolbar_uninstaller	decomputeur toolbar uninstaller	eq	1.0.2

References

secunia.com/advisories/36366

www.decomputeur.nl/pdf/security-risk-found.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/52607

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

Low

0.031 Low

EPSS

Percentile

91.1%

JSON

Related for CVE-2009-2963

nvd1 prion1 cvelist1