返回 CVE 瀏覽器

CVE-2009-2026

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1370%

EPSS Percentile28.89th

Published2009年8月10日

Last Modified2026年4月23日

Vulnerability Description

Stack-based buffer overflow in a token searching function in the dtscore library in Data Transport Services in CA Software Delivery r11.2 C1, C2, C3, and SP4; Unicenter Software Delivery 4.0 C3; CA Advantage Data Transport 3.0 C1; and CA IT Client Manager r12 allows remote attackers to execute arbitrary code via crafted data.

Affected Platforms (CPE)

📦

Ca

Advantage Data Transport

= 3.0

📦

Ca

It Client Manager

= r12

📦

Ca

Software Delivery

= r11

📦

Ca

Software Delivery

= r11

📦

Ca

Software Delivery

= r11

📦

Ca

Software Delivery

= r11

📦

Ca

Unicenter Software Delivery

= 4.0

References & Advisories

🔗 http://osvdb.org/56834

🔗 http://secunia.com/advisories/36142

🔗 http://securitytracker.com/id?1022688

🔗 http://www.securityfocus.com/archive/1/505557/100/0/threaded

🔗 http://www.securityfocus.com/bid/35984

🔗 http://www.vupen.com/english/advisories/2009/2195

🔗 http://www.zerodayinitiative.com/advisories/ZDI-09-052/

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/52322

相關漏洞威脅

CVE-2007-00609.3

Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CA...

CVE-2009-384610.0

Multiple heap-based buffer overflows in ovlogin.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote...

CVE-2009-011910.0

Buffer overflow in Microsoft Windows XP SP3 allows remote attackers to cause a denial of service (memory corruption and applicatio...

CVE-2009-025810.0

The Indexed Search Engine (indexed_search) system extension in TYPO3 4.0.0 through 4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4...