CVE-2009-0813

{"id": "CVE-2009-0813", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2009-03-05T02:30:00.530", "references": [{"url": "http://secunia.com/advisories/34103", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2009/0591", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49028", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/8144", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Insecure method vulnerability in the ImeraIEPlugin ActiveX control (ImeraIEPlugin.dll 1.0.2.54) in Imera TeamLinks Client allows remote attackers to force the download and execution of arbitrary URLs via modified DownloadProtocol, DownloadHost, DownloadPort, and DownloadURI parameters."}, {"lang": "es", "value": "Vulnerabilidad de m\u00e9todo inseguro en el control ActiveX ImeraIEPlugin (ImeraIEPlugin.dll v1.0.2.54) en Imera TeamLinks Client permite a atacantes remotos forzar la descarga y ejecucion de URLs a su eleccion a traves de los parametros \"DownloadProtocol\", \"DownloadHost\", \"DownloadPort\", y \"DownloadURI\"."}], "lastModified": "2017-09-29T01:34:03.373", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:imera:teamlinks:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3F6AB34-686D-4EC8-9A9B-FCFE58DF21F8"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}