CVE-2009-3573
EMC Captiva PixTools 2.2 Distributed Imaging - ActiveX Control Multiple Insecure Method Vulnerabilities
Severity Score
9.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
3
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple insecure method vulnerabilities in the PDIControl.PDI.1 ActiveX control (PDIControl.dll) 2.2.3160.0 in EMC Captiva PixTools Distributed Imaging 2.2 allow remote attackers to create or overwrite arbitrary files via the (1) SetLogFileName and (2) WriteToLog methods.
Múltiples vulnerabilidades de método inseguro en el control ActiveX PDIControl.PDI.1 (PDIControl.dll) v2.2.3160.0 en EMC Captiva PixTools Distributed Imaging v2.2 permite a atacantes remotos crear o sobrescribir ficheros de forma arbitraria a traves de los métodos (1) SetLogFileName y (2) WriteToLog.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-10-01 First Exploit
- 2009-10-06 CVE Reserved
- 2009-10-06 CVE Published
- 2024-06-26 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/53555 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/33263 | 2009-10-01 | |
| http://www.securityfocus.com/bid/36566 | 2024-08-07 | |
| http://www.shinnai.net/xplits/TXT_17zVMhRhsRE6qC6DAj52.html | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/36896 | 2024-02-14 | |
| http://www.vupen.com/english/advisories/2009/2808 | 2024-02-14 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Emc Search vendor "Emc" | Captiva Pixtools Distributed Imaging Search vendor "Emc" for product "Captiva Pixtools Distributed Imaging" | 2.2 Search vendor "Emc" for product "Captiva Pixtools Distributed Imaging" and version "2.2" | - |
Affected
| ||||||