Lucene search

[email protected]CVE-2009-4240

HistoryDec 09, 2009 - 7:30 p.m.

CVE-2009-4240

2009-12-0919:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-4240

buffer overflows

ibm infosphere information server

datastage subsystem

nvd

information security

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.9%

JSON

Multiple buffer overflows in unspecified setuid executables in the DataStage subsystem in IBM InfoSphere Information Server 8.1 before FP1 have unknown impact and attack vectors.

Affected configurations

NVD

Node

ibminfosphere_information_serverMatch8.1

CPENameOperatorVersion
ibm:infosphere_information_serveribm infosphere information servereq8.1

CPE	Name	Operator	Version
ibm:infosphere_information_server	ibm infosphere information server	eq	8.1

References

secunia.com/advisories/37556

www-01.ibm.com/support/docview.wss?uid=swg1JR30394

www-01.ibm.com/support/docview.wss?uid=swg21406224

www.osvdb.org/60807

www.securityfocus.com/bid/37245

www.vupen.com/english/advisories/2009/3432

exchange.xforce.ibmcloud.com/vulnerabilities/54609

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.9%

JSON

Related for CVE-2009-4240

nvd1 cvelist1 prion1