Lucene search

[email protected]CVE-2009-0811

HistoryMar 04, 2009 - 5:30 p.m.

CVE-2009-0811

2009-03-0417:30:02

CWE-94

[email protected]

web.nvd.nist.gov

cve-2009-0811

insecure method vulnerability

sopcast

sopcore

activex control

remote execution

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.8%

JSON

Insecure method vulnerability in the SopCast SopCore ActiveX control in sopocx.ocx 3.0.3.501 allows remote attackers to execute arbitrary programs via an executable file name in the argument to the SetExternalPlayer method.

Affected configurations

NVD

Node

sopcastsopcore_activex_controlMatch3.0.3.501

CPENameOperatorVersion
sopcast:sopcore_activex_controlsopcast sopcore activex controleq3.0.3.501

CPE	Name	Operator	Version
sopcast:sopcore_activex_control	sopcast sopcore activex control	eq	3.0.3.501

References

retrogod.altervista.org/9sg_sopcastia.html

www.securityfocus.com/archive/1/501252/100/0/threaded

www.securityfocus.com/bid/33920

exchange.xforce.ibmcloud.com/vulnerabilities/48955

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.8%

JSON

Related for CVE-2009-0811

openvas2 prion1 nvd1 cvelist1