IBM Access Support ActiveX GetXMLValue Method Buffer Overflow
Severity: : Critical
CVE Kennungen: : CVE-2009-0215
Advisory Date: 21 de июля de 2015
DESCRIPTION
Stack-based buffer overflow in the GetXMLValue method in the IBM Access Support ActiveX control in IbmEgath.dll, as distributed on IBM and Lenovo computers, allows remote attackers to execute arbitrary code via unspecified vectors.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1003408
Trend Micro Deep Security DPI Rule Name: 1003408 - IBM Access Support ActiveX GetXMLValue Method Buffer Overflow
AFFECTED SOFTWARE AND VERSION:
- ibm access_support_activex_control 3.20.284.0