7 matches found
CVE-2009-0215
creationtimestamp| type| source ---|---|--- 2010-11-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16517 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/ibmegathgetxmlvalue.rb 2025-02-06 03:13:39+00:00...
IBM Access Support ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in IBM Access Support. When sending an overly long string to the GetXMLValue method of IbmEgath.dll 3.20.284.0 an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
IBM Access Support ActiveX GetXMLValue buffer overflow
Added: 04/01/2009 CVE: CVE-2009-0215 BID: 34228 OSVDB: 52958 Background The IBM Access Support ActiveX control is used to collect system information. It comes with certain IBM and Lenovo computer systems. Problem A buffer overflow vulnerability allows command execution when a user loads a page...
IBM Access Support ActiveX GetXMLValue buffer overflow
Added: 04/01/2009 CVE: CVE-2009-0215 BID: 34228 OSVDB: 52958 Background The IBM Access Support ActiveX control is used to collect system information. It comes with certain IBM and Lenovo computer systems. Problem A buffer overflow vulnerability allows command execution when a user loads a page...
IBM Access Support ActiveX GetXMLValue buffer overflow
Added: 04/01/2009 CVE: CVE-2009-0215 BID: 34228 OSVDB: 52958 Background The IBM Access Support ActiveX control is used to collect system information. It comes with certain IBM and Lenovo computer systems. Problem A buffer overflow vulnerability allows command execution when a user loads a page...
DSquare Exploit Pack: D2SEC_IBMEGATH
Name| d2secibmegath ---|--- CVE| CVE-2009-0215 Exploit Pack| D2ExploitPack Description| IBM Access Support ActiveX Stack Overflow Vulnerability Notes|...
CVE-2009-0215
IBM Access Support ActiveX control (IbmEgath.dll) contains a stack-based buffer overflow in GetXMLValue(), allowing remote code execution when a user opens a crafted HTML document. This affects IBM/Lenovo systems where the ActiveX control is installed. The vulnerability is exploitable via user in...