CVE-2009-4225
published 2009-12-08CVE-2009-4225: Stack-based buffer overflow in the PestPatrol ActiveX control (ppctl.dll) 5.6.7.9 in CA eTrust PestPatrol allows remote attackers to execute arbitrary code via…
PriorityP355critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
30.62%
98.0th percentile
Stack-based buffer overflow in the PestPatrol ActiveX control (ppctl.dll) 5.6.7.9 in CA eTrust PestPatrol allows remote attackers to execute arbitrary code via a long argument to the Initialize method.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ca | etrust_pestpatrole_ppctl.dll_activex | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- ·The vulnerable version is specifically ppctl.dll 5.6.7.9; other versions may not be affected. Confirm version before applying detections. ↗
- ·The Metasploit module targets Windows XP SP0-SP3 and Windows Vista with IE 6.0 SP0-SP2 and IE 7 only; the return address 0x0A0A0A0A is platform-specific and may not apply to other OS/browser combinations. ↗
- ·JavaScript variable names in the exploit HTML are randomized at generation time, limiting static string-based detection of the malicious HTML payload. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
CA eTrust PestPatrol - ActiveX Control Buffer Overflow (Metasploit)
exploitdb·2010-11-11
CVE-2009-4225 CA eTrust PestPatrol - ActiveX Control Buffer Overflow (Metasploit)
CA eTrust PestPatrol - ActiveX Control Buffer Overflow (Metasploit)
---
##
# $Id: etrust_pestscan.rb 10998 2010-11-11 22:43:22Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'CA eTrust PestPatrol ActiveX Control Buffer Overflow',
'Description' => %q{
This module exploits a stack buffer overflow in CA eTrust PestPatrol. When
sending an overly long string to the Initialize() property of ppctl.dll (5.6.7.9)
an attacker may be able to execute arbitrary code.
},
'License' => MSF_LICENSE,
'Author' => [ 'MC' ],
'Version' => '$Revision: 10
Metasploit
CA eTrust PestPatrol ActiveX Control Buffer Overflow
metasploit
CA eTrust PestPatrol ActiveX Control Buffer Overflow
CA eTrust PestPatrol ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in CA eTrust PestPatrol. When sending an overly long string to the Initialize() property of ppctl.dll (5.6.7.9) an attacker may be able to execute arbitrary code.
No writeups or analysis indexed.
http://www.fortiguard.com/encyclopedia/vulnerability/ca.etrust.pestpatrol.ppctl.dll.activex.access.htmlhttp://www.metasploit.com/redmine/projects/framework/repository/revisions/7167/entry/modules/exploits/windows/fileformat/etrust_pestscan.rbhttp://www.securityfocus.com/bid/37133https://exchange.xforce.ibmcloud.com/vulnerabilities/54458http://www.fortiguard.com/encyclopedia/vulnerability/ca.etrust.pestpatrol.ppctl.dll.activex.access.htmlhttp://www.metasploit.com/redmine/projects/framework/repository/revisions/7167/entry/modules/exploits/windows/fileformat/etrust_pestscan.rbhttp://www.securityfocus.com/bid/37133https://exchange.xforce.ibmcloud.com/vulnerabilities/54458
2009-12-08
Published