NVD

Id
47721  
Name
CVE-2009-0389  
Description
Multiple insecure method vulnerabilities in the Web On Windows (WOW) ActiveX control in WOW ActiveX 2 allow remote attackers to (1) create and overwrite arbitrary files via the WriteIniFileString method, (2) execute arbitrary programs via the ShellExecute method, (3) read from the registry via unspecified vectors, and (4) write to the registry via unspecified vectors. NOTE: vectors 1 and 2 can be used together to execute arbitrary code.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2009-02-02  
Modified Date
2009-02-03  
Seq
2009-0389  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
239201 47721 CVE-2009-0389 7910  View
239202 47721 CVE-2009-0389 33515  View
239203 47721 CVE-2009-0389 wow-writeinifilestring-code-execution(48337)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
42204 JVNDB-2009-003211 WOW ActiveX 2 の WOW ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 WOW ActiveX 2 の Web On Windows ActiveX コントロールには、以下の脆弱性が存在します。 CVE-2009-0389 37820 CVE-2009-0389 47721 9.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-003211.html 2009-02-02 2012-06-26 View