IBM Access Support ActiveX GetXMLValue Method Buffer Overflow
Gravité: : Critique
Identifiant(s) CVE: : CVE-2009-0215
Date du conseil: 21 juillet 2015
Description
Stack-based buffer overflow in the GetXMLValue method in the IBM Access Support ActiveX control in IbmEgath.dll, as distributed on IBM and Lenovo computers, allows remote attackers to execute arbitrary code via unspecified vectors.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1003408
Trend Micro Deep Security DPI Rule Name: 1003408 - IBM Access Support ActiveX GetXMLValue Method Buffer Overflow
Affected software and version:
- ibm access_support_activex_control 3.20.284.0