CVE-2009-3518
N/A
N/A
Summary
Argument injection vulnerability in the iim: URI handler in IBMIM.exe in IBM Installation Manager 1.3.2 and earlier, as used in IBM Rational Robot and Rational Team Concert, allows remote attackers to load arbitrary DLL files via the -vm option, as demonstrated by a reference to a UNC share pathname.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.vupen.com/english/advisories/2009/2792
- http://retrogod.altervista.org/9sg_ibm_uri.html
- http://secunia.com/advisories/36906
References
- http://www.vupen.com/english/advisories/2009/2792
- http://retrogod.altervista.org/9sg_ibm_uri.html
- http://secunia.com/advisories/36906
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.