CVE-2009-3573

Sažetak

Multiple insecure method vulnerabilities in the PDIControl.PDI.1 ActiveX control (PDIControl.dll) 2.2.3160.0 in EMC Captiva PixTools Distributed Imaging 2.2 allow remote attackers to create or overwrite arbitrary files via the (1) SetLogFileName and (2) WriteToLog methods.

Reference

http://secunia.com/advisories/36896
http://www.securityfocus.com/bid/36566
http://www.shinnai.net/xplits/TXT_17zVMhRhsRE6qC6DAj52.html
http://www.vupen.com/english/advisories/2009/2808
https://exchange.xforce.ibmcloud.com/vulnerabilities/53555

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

17-08-2017 - 01:31

Objavljeno

06-10-2009 - 20:30