CyberSec.Space Logo
Back to CVE Browser

CVE-2009-2026

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1370%
EPSS Percentile28.89th
PublishedAug 10, 2009
Last ModifiedApr 23, 2026

Vulnerability Description

Stack-based buffer overflow in a token searching function in the dtscore library in Data Transport Services in CA Software Delivery r11.2 C1, C2, C3, and SP4; Unicenter Software Delivery 4.0 C3; CA Advantage Data Transport 3.0 C1; and CA IT Client Manager r12 allows remote attackers to execute arbitrary code via crafted data.

Affected Platforms (CPE)

πŸ“¦
Ca

Advantage Data Transport

= 3.0
πŸ“¦
Ca

It Client Manager

= r12
πŸ“¦
Ca

Software Delivery

= r11
πŸ“¦
Ca

Software Delivery

= r11
πŸ“¦
Ca

Software Delivery

= r11
πŸ“¦
Ca

Software Delivery

= r11
πŸ“¦
Ca

Unicenter Software Delivery

= 4.0

References & Advisories

πŸ”— http://osvdb.org/56834
πŸ”— http://secunia.com/advisories/36142
πŸ”— http://securitytracker.com/id?1022688
πŸ”— http://www.securityfocus.com/archive/1/505557/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/35984
πŸ”— http://www.vupen.com/english/advisories/2009/2195
πŸ”— http://www.zerodayinitiative.com/advisories/ZDI-09-052/
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/52322

Related Vulnerabilities

CVE-2007-00609.3

Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CA...

CVE-2009-227110.0

The Huawei D100 has (1) a certain default administrator password for the web interface, and does not force a password change; and ...

CVE-2009-032310.0

Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0 and 11.0 allow remote attackers to execute arbitrary code via ...

CVE-2009-395610.0

The default configuration of Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, does not enable ...