What is CVE-2009-1350?

CVE-2009-1350 is a vulnerability in N/a. Published 2009-04-21.

Is CVE-2009-1350 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2009-1350

Unspecified vulnerability in xtagent.exe in Novell NetIdentity Client before 1.2.4 allows remote attackers to execute arbitrary code by establishing an IPC$ connection to the XTIERRPCPIPE named pipe, and sending RPC messages that trigger a…

EPSS: 0.755 (98.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

20090406 ZDI-09-016: Novell Client/NetIdentity Agent Remote Arbitrary Pointer Dereference Code Execution Vulnerability (mailing-list, x_refsource_BUGTRAQ)
download.novell.com/Download (x_refsource_CONFIRM)
ADV-2009-0954 (vdb-entry, x_refsource_VUPEN)
34400 (vdb-entry, x_refsource_BID)
bugzilla.novell.com/show_bug.cgi (x_refsource_MISC)
1021990 (vdb-entry, x_refsource_SECTRACK)
www.zerodayinitiative.com/advisories/ZDI-09-016/ (x_refsource_MISC)

Frequently asked questions

What is CVE-2009-1350?: CVE-2009-1350 is a vulnerability in N/a. Published 2009-04-21.
Is CVE-2009-1350 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.