What is CVE-2009-1430?

CVE-2009-1430 is a vulnerability in N/a. Published 2009-04-29.

Is CVE-2009-1430 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2009-1430

Multiple stack-based buffer overflows in IAO.EXE in the Intel Alert Originator Service in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine…

EPSS: 0.657 (98.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

ADV-2009-1204 (vdb-entry, x_refsource_VUPEN)
1022132 (vdb-entry, x_refsource_SECTRACK)
20090428 ZDI-09-018: Symantec Client Security Alert Originator Service Stack Overflow Vulnerability (mailing-list, x_refsource_BUGTRAQ)
1022130 (vdb-entry, x_refsource_SECTRACK)
34674 (vdb-entry, x_refsource_BID)
symantec-msgsys-bo(50178) (vdb-entry, x_refsource_XF)
34672 (vdb-entry, x_refsource_BID)
www.symantec.com/security_response/securityupdates/detail.jsp (x_refsource_CONFIRM)
symantec-iao-bo(50177) (vdb-entry, x_refsource_XF)
34856 (x_refsource_SECUNIA, third-party-advisory)

Frequently asked questions

What is CVE-2009-1430?: CVE-2009-1430 is a vulnerability in N/a. Published 2009-04-29.
Is CVE-2009-1430 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.