CVE-2009-0218 - Insecure method vulnerability in Particle Software IntraLaunch Application Launcher ActiveX control

CVE-2009-0218

Summary

Insecure method vulnerability in Particle Software IntraLaunch Application Launcher ActiveX control in IntraLaunch.ocx, as used in LDRA TBbrowse and possibly other products, allows remote attackers to execute arbitrary code via unknown vectors.

References

Vulnerable Configurations

cpe:2.3:a:ldra:tbbrowse:*:*:*:*:*:*:*:*
cpe:2.3:a:ldra:tbbrowse:*:*:*:*:*:*:*:*
cpe:2.3:a:particlesoftware:intralaunch:-:*:*:*:*:*:*:*
cpe:2.3:a:particlesoftware:intralaunch:-:*:*:*:*:*:*:*

CVSS

Base:	9.3 (as of 08-08-2017 - 01:33)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:M/Au:N/C:C/I:C/A:C

refmap via4

bid	34395
cert-vn	VU#908801
confirm	http://www.kb.cert.org/vuls/id/MAPG-7PYRP4
misc	http://www.kb.cert.org/vuls/id/WDON-7Q4RZN
xf	intralaunch-activex-code-execution(49684)

Last major update

08-08-2017 - 01:33

Published

13-04-2009 - 16:30

Last modified

08-08-2017 - 01:33