CVE-2009-1092
published 2009-03-25CVE-2009-1092: Use-after-free vulnerability in the LIVEAUDIO.LiveAudioCtrl.1 ActiveX control in LIVEAU~1.OCX 7.0 for GeoVision DVR systems allows remote attackers to execute…
PriorityP350critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
8.81%
94.5th percentile
Use-after-free vulnerability in the LIVEAUDIO.LiveAudioCtrl.1 ActiveX control in LIVEAU~1.OCX 7.0 for GeoVision DVR systems allows remote attackers to execute arbitrary code by calling the GetAudioPlayingTime method with certain arguments.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| geovision | liveaudio_activex_control | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://retrogod.altervista.org/9sg_geovision_liveaudio_freedmem.htmlhttp://www.securityfocus.com/archive/1/501773/100/0/threadedhttp://www.securityfocus.com/bid/34115https://exchange.xforce.ibmcloud.com/vulnerabilities/49238https://www.exploit-db.com/exploits/8206http://retrogod.altervista.org/9sg_geovision_liveaudio_freedmem.htmlhttp://www.securityfocus.com/archive/1/501773/100/0/threadedhttp://www.securityfocus.com/bid/34115https://exchange.xforce.ibmcloud.com/vulnerabilities/49238https://www.exploit-db.com/exploits/8206
2009-03-25
Published