CVE-2009-0809

Sažetak

The Web Editor in Dassault Systemes ENOVIA SmarTeam V5 before Release 18 Service Pack 8, and possibly CATIA and other products, allows remote authenticated users to read the profile card of an object in the document class via a link that is sent from the owner of the document object.

Reference

http://secunia.com/advisories/34037
http://www.securityfocus.com/bid/33895
http://www.vupen.com/english/advisories/2009/0525
http://www-01.ibm.com/support/docview.wss?uid=swg1HD80332

CVSS

Base:	3.5
Impact:	2.9
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:M/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

22-07-2009 - 04:00

Objavljeno

04-03-2009 - 17:30