Lucene search

[email protected]CVE-2009-4225

HistoryDec 08, 2009 - 6:30 p.m.

CVE-2009-4225

2009-12-0818:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-4225

nvd

security

buffer overflow

pestpatrol

ca etrust

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.931 High

EPSS

Percentile

99.1%

JSON

Stack-based buffer overflow in the PestPatrol ActiveX control (ppctl.dll) 5.6.7.9 in CA eTrust PestPatrol allows remote attackers to execute arbitrary code via a long argument to the Initialize method.

Affected configurations

NVD

Node

caetrust_pestpatrole_ppctl.dll_activexMatch5.6.7.9

CPENameOperatorVersion
ca:etrust_pestpatrole_ppctl.dll_activexca etrust pestpatrole ppctl.dll activexeq5.6.7.9

CPE	Name	Operator	Version
ca:etrust_pestpatrole_ppctl.dll_activex	ca etrust pestpatrole ppctl.dll activex	eq	5.6.7.9

References

www.fortiguard.com/encyclopedia/vulnerability/ca.etrust.pestpatrol.ppctl.dll.activex.access.html

www.metasploit.com/redmine/projects/framework/repository/revisions/7167/entry/modules/exploits/windows/fileformat/etrust_pestscan.rb

www.securityfocus.com/bid/37133

exchange.xforce.ibmcloud.com/vulnerabilities/54458

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.931 High

EPSS

Percentile

99.1%

JSON

Related for CVE-2009-4225

openvas2 prion1 nvd1 cvelist1 checkpoint_advisories1