CVE-2009-1807

2009-05-2820:14:00

mitre

www.cve.org

7.7 High

AI Score

Confidence

Low

0.061 Low

EPSS

Percentile

93.6%

JSON

Unspecified vulnerability in Config.dll in Baofeng products 3.09.04.17 and earlier allows remote attackers to execute arbitrary code by calling the SetAttributeValue method, as exploited in the wild in April and May 2009.

References

www.cisrt.org/enblog/read.php?245

www.vupen.com/english/advisories/2009/1392