VDB
CVE-2009-0215
CVE-2009-0215
PUBLISHED
KEV
CVSS 9.300000190734863 CRITICAL
Stack-based buffer overflow in the GetXMLValue method in the IBM Access Support ActiveX control in IbmEgath.dll, as distributed on IBM and Lenovo computers, allows remote attackers to execute arbitrary code via unspecified vectors.
EPSS 63.71% · 98.4th percentile
Risk Scores
CVSS 2.0
9.300000190734863
EPSS Score
63.71%
98.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| ibm | access_support_activex_control | 3.20.284.0 |
Timeline
- Mar 25, 2009 CVE Published
- Jul 30, 2010 PoC Published
- Nov 11, 2010 PoC Published
- May 29, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- May 13, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- http://www.securityfocus.com/bid/34228 technical
- 52958 vdb
- ibm-access-activex-bo(49409) vdb
- 34470 third-party-advisory
- ADV-2009-0824 vdb
- VU#340420 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2009-0215 advisory