Computer Security
[EN] securityvulns.ru no-pyccku


IBM Director code execution
Published:09.12.2012
Source:
SecurityVulns ID:12756
Type:remote
Threat Level:
6/10
Description:It's possible to load DLL from any location.
Affected:IBM : IBM Director 5.20
CVE:CVE-2009-0880 (Directory traversal vulnerability in the CIM server in IBM Director before 5.20.3 Service Update 2 on Windows allows remote attackers to load and execute arbitrary local DLL code via a .. (dot dot) in a /CIMListener/ URI in an M-POST request.)
Original documentdocumentHI-TECH ., IBM System Director Remote System Level Exploit (CVE-2009-0880 extended zeroday) (09.12.2012)
Files:IBM System Director Remote System Level Exploit (CVE-2009-0880 extended zeroday)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod