Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2009-3699
HistoryOct 15, 2009 - 10:30 a.m.

CVE-2009-3699

2009-10-1510:30:01
CWE-119
mitre
web.nvd.nist.gov
32
ibm
aix
vios
buffer overflow
remote code execution
cve-2009-3699

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.79

Percentile

98.3%

JSON

Stack-based buffer overflow in libcsa.a (aka the calendar daemon library) in IBM AIX 5.x through 5.3.10 and 6.x through 6.1.3, and VIOS 2.1 and earlier, allows remote attackers to execute arbitrary code via a long XDR string in the first argument to procedure 21 of rpc.cmsd.

Affected configurations

Nvd
Node
ibmviosRange2.1.0
OR
ibmviosMatch1.4
OR
ibmviosMatch1.5.0
OR
ibmviosMatch1.5.1
OR
ibmviosMatch1.5.2
OR
ibmaixMatch5
OR
ibmaixMatch5.1
OR
ibmaixMatch5.1.0.10
OR
ibmaixMatch5.1l
OR
ibmaixMatch5.2
OR
ibmaixMatch5.2.0
OR
ibmaixMatch5.2.0.50
OR
ibmaixMatch5.2.0.54
OR
ibmaixMatch5.2.2
OR
ibmaixMatch5.2_l
OR
ibmaixMatch5.3
OR
ibmaixMatch5.3sp6
OR
ibmaixMatch5.3.0
OR
ibmaixMatch5.3.0.20
OR
ibmaixMatch5.3.7
OR
ibmaixMatch5.3.8
OR
ibmaixMatch5.3.9
OR
ibmaixMatch5.3.10
OR
ibmaixMatch5.3_l
OR
ibmaixMatch5.3_ml03
OR
ibmaixMatch5l
OR
ibmaixMatch6.1
OR
ibmaixMatch6.1.0
OR
ibmaixMatch6.1.1
OR
ibmaixMatch6.1.2
OR
ibmaixMatch6.1.3
VendorProductVersionCPE
ibmvios*cpe:2.3:a:ibm:vios:*:*:*:*:*:*:*:*
ibmvios1.4cpe:2.3:a:ibm:vios:1.4:*:*:*:*:*:*:*
ibmvios1.5.0cpe:2.3:a:ibm:vios:1.5.0:*:*:*:*:*:*:*
ibmvios1.5.1cpe:2.3:a:ibm:vios:1.5.1:*:*:*:*:*:*:*
ibmvios1.5.2cpe:2.3:a:ibm:vios:1.5.2:*:*:*:*:*:*:*
ibmaix5cpe:2.3:o:ibm:aix:5:*:*:*:*:*:*:*
ibmaix5.1cpe:2.3:o:ibm:aix:5.1:*:*:*:*:*:*:*
ibmaix5.1.0.10cpe:2.3:o:ibm:aix:5.1.0.10:*:*:*:*:*:*:*
ibmaix5.1lcpe:2.3:o:ibm:aix:5.1l:*:*:*:*:*:*:*
ibmaix5.2cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*
Rows per page:
1-10 of 311

References

Related

exploitdb 1
metasploit 1
prion 1
nessus 8
canvas 1
packetstorm 1
cvelist 1
nvd 1
exploitdb
exploitdb
AIX Calendar Manager Service Daemon (rpc.cmsd) Opcode 21 - Buffer Overflow (Metasploit)
2010-11-11 00:00:00
metasploit
metasploit
AIX Calendar Manager Service Daemon (rpc.cmsd) Opcode 21 Buffer Overflow
2010-02-08 00:52:58
prion
prion
Stack overflow
2009-10-15 10:30:00
nessus
nessus
AIX 5.3 TL 7 : cmsd (IZ61628)
2013-01-30 00:00:00
AIX 5.3 TL 9 : cmsd (IZ61717)
2013-01-30 00:00:00
AIX 5.3 TL 8 : cmsd (IZ62237)
2013-01-30 00:00:00
canvas
canvas
Immunity Canvas: AIXCMSD
2009-10-15 10:30:00
packetstorm
packetstorm
AIX Calendar Manager Service Daemon (rpc.cmsd) Opcode 21 Buffer Overflow
2010-02-10 00:00:00
cvelist
cvelist
CVE-2009-3699
2009-10-15 10:00:00
nvd
nvd
CVE-2009-3699
2009-10-15 10:30:01

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.79

Percentile

98.3%

JSON
Related for CVE-2009-3699
exploitdb1metasploit1prion1nessus8canvas1packetstorm1cvelist1nvd1