CVE-2010-1909

Buffer overflow in the RunCmd method in the SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to execute arbitrary code via vectors involving "CreateProcess params." NOTE: some of these details are obtained from third party information.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:consona:consona_dynamic_agent:-:-:enterprise:*:*:*:*:*
cpe:2.3:a:consona:consona_dynamic_agent:-:-:marketing:*:*:*:*:*
cpe:2.3:a:consona:consona_dynamic_agent:-:-:support:*:*:*:*:*
cpe:2.3:a:consona:consona_live_assistance:*:*:*:*:*:*:*:*
cpe:2.3:a:consona:consona_subscriber_assistance:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-05-12 11:46

Updated : 2024-02-04 17:54


NVD link : CVE-2010-1909

Mitre link : CVE-2010-1909

CVE.ORG link : CVE-2010-1909


JSON object : View

Products Affected

consona

  • consona_subscriber_assistance
  • consona_live_assistance
  • consona_dynamic_agent
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer