CVE-2009-3861
Published Nov 4, 2009
Last updated 9 months ago
Overview
- Description
- Stack-based buffer overflow in SafeNet SoftRemote 10.8.5 (Build 2) and 10.3.5 (Build 6), and possibly other versions before 10.8.9, allows local users to execute arbitrary code via a long string in a (1) TREENAME or (2) GROUPNAME Policy file (spd).
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.9
- Impact score
- 10
- Exploitability score
- 3.4
- Vector string
- AV:L/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2CCC5416-CA6C-4EF9-8C74-6B688FF300A4",
"versionEndIncluding": "10.8.8"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:1.7.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E58D092-7AEE-4930-BA65-6ABDCEA81941"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:1.7.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B27AA9E6-544A-485F-9E44-9F66937AFCA9"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:1.7.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3F911EB9-18A7-4B47-B8F1-A6E1A076D47B"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:1.8.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2C67DB6B-7FCB-400B-B269-0C0F710DC3CF"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:1.9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "56B5B449-9A76-4D62-9B1F-1D108D0ABCA5"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:10.3.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "95C0C428-F15F-40BF-9353-F0890D2F8733"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:10.7.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C1457398-B204-4997-8091-EC943C4E1D18"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:10.8.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4525CF5B-5F19-4B0F-A068-B5D0557474F3"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:10.8.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FC36359D-D57D-4CA0-B858-944593461DE9"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:10.8.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "79BA9352-5194-4F72-94DB-10696EA6E9D2"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:10.8.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B977AD44-76F4-4D43-9B06-D52046721AE3"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:10.8.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7E33DCCE-9DD2-4210-97AF-DB315F0731BB"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:10.8.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1AD55BE4-6F19-4151-9E67-2813271A8BAE"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:10.8.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "09148530-C268-443C-B44B-C9A8E8E6BABF"
},
{
"criteria": "cpe:2.3:a:safenet-inc:softremote:10.8.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3545344C-30AB-4697-B969-3908C9A7435D"
}
],
"operator": "OR"
}
]
}
]