CVE-2009-1807

Unspecified vulnerability in Config.dll in Baofeng products 3.09.04.17 and earlier allows remote attackers to execute arbitrary code by calling the...

Basic Information

CVE State: PUBLISHED
Reserved Date: May 28, 2009
Published Date: May 28, 2009
Last Updated: August 07, 2024
Vendor: Baofeng
Product: Baofeng products
Description: Unspecified vulnerability in Config.dll in Baofeng products 3.09.04.17 and earlier allows remote attackers to execute arbitrary code by calling the SetAttributeValue method, as exploited in the wild in April and May 2009.

CVSS Scores

CVSS v2.0

9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploit Status

Exploited in the Wild: Yes (2009-05-28 20:14:00 UTC) Source

References

http://www.vupen.com/english/advisories/2009/1392 http://www.cisrt.org/enblog/read.php?245

Known Exploited Vulnerability Information

Source	Added Date
CVE	2009-05-28 20:14:00 UTC

Timeline

CVE ID Reserved

May 28, 2009
CVE Published to Public

May 28, 2009
Added to KEVIntel

May 28, 2009