Vulnerability CVE-2009-0218


Published: 2009-04-13   Modified: 2012-02-13

Description:
Insecure method vulnerability in Particle Software IntraLaunch Application Launcher ActiveX control in IntraLaunch.ocx, as used in LDRA TBbrowse and possibly other products, allows remote attackers to execute arbitrary code via unknown vectors.

Type:

CWE-Other

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Particlesoftware -> Intralaunch 

 References:
http://www.kb.cert.org/vuls/id/WDON-7Q4RZN
http://www.kb.cert.org/vuls/id/MAPG-7PYRP4
http://www.kb.cert.org/vuls/id/908801
http://xforce.iss.net/xforce/xfdb/49684
http://www.securityfocus.com/bid/34395

Copyright 2024, cxsecurity.com

 

Back to Top