CVE-2009-4643 in Odyssey Access Clientinfo

Summary

Stack-based buffer overflow in dsInstallerService.dll in the Juniper Installer Service, as used in Juniper Odyssey Access Client 4.72.11421.0 and other products, allows remote attackers to execute arbitrary code via a long string in a malformed DSSETUPSERVICE_CMD_UNINSTALL command to the NeoterisSetupService named pipe.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

02/15/2010

Disclosure

02/15/2010

Moderation

VulDB entry created

Entries

VDB-51849 (1)

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

10.0

EPSS

0.04087

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2009-4643
NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-4643
CVE Details	https://www.cvedetails.com/cve/CVE-2009-4643/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!