Vulnerabilities > CVE-2009-1666 - Memory Corruption vulnerability in Cyclomedia Cycloscopelite 2.50.3.0

CVSS 9.3 - CRITICAL

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

cyclomedia

critical

NVD

Published: 2009-05-18

Updated: 2009-05-19

Summary

Multiple unspecified vulnerabilities in CycloMedia CycloScopeLite 2.50.3.0 allow remote attackers to execute arbitrary code via the ReturnConnection method in (1) CM_ADOConnection.dll, (2) CM_AddressInfoDBC.dll, and (3) CM_RecordingLocationDBC.dll, related to improper dereferencing. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Configurations

Part	Description	Count
Application	Cyclomedia Cyclomedia Cycloscopelite 2.50.3.0	1

References

http://secunia.com/advisories/35046
http://www.securityfocus.com/bid/34912