What is CVE-2009-3031?

CVE-2009-3031 is a vulnerability in N/a. Published 2009-11-03.

Is CVE-2009-3031 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2009-3031

Stack-based buffer overflow in the BrowseAndSaveFile method in the Altiris eXpress NS ConsoleUtilities ActiveX control 6.0.0.1846 in AeXNSConsoleUtilities.dll in Symantec Altiris Notification Server (NS) 6.0 before R12, Deployment Server 6…

EPSS: 0.766 (99.0th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

sotiriu.de/adv/NSOADV-2009-001.txt (x_refsource_MISC)
36698 (vdb-entry, x_refsource_BID)
ADV-2009-3117 (vdb-entry, x_refsource_VUPEN)
www.symantec.com/security_response/securityupdates/detail.jsp (x_refsource_CONFIRM)
20091102 NSOADV-2009-001: Symantec ConsoleUtilities ActiveX Control Buffer Overflow (mailing-list, x_refsource_BUGTRAQ)
kb.altiris.com/article.asp (x_refsource_CONFIRM)
kb.altiris.com/article.asp (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2009-3031?: CVE-2009-3031 is a vulnerability in N/a. Published 2009-11-03.
Is CVE-2009-3031 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.