|
|
|||
| Rule General Information |
|---|
| Release Date: | 2021-12-16 | |
| Rule Name: | GeoVision LiveAudio ActiveX Remote Freed-Memory Access Vulnerability (CVE-2009-1092) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Use-after-free vulnerability in the LIVEAUDIO.LiveAudioCtrl.1 ActiveX control in LIVEAU~1.OCX 7.0 for GeoVision DVR systems allows remote attackers to execute arbitrary code by calling the GetAudioPlayingTime method with certain arguments. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | SecurityFocusBID:34115 ExploitDB:8206 http://retrogod.altervista.org/9sg_geovision_liveaudio_freedmem.html http://www.securityfocus.com/archive/1/501773/100/0/threaded |
|
| Solutions |
|---|
| The vendor has released upgrade patches to fix vulnerabilities, please visit: http://www.geovision.com.cn/index.htm |