Insecure Method Vulnerability in Acer LunchApp ActiveX Control
CVE-2009-2627

Currently unrated

Key Information:

Vendor: Acer
Status: Lunchapp.aplunch
Vendor: CVE Published:; 19 August 2009

What is CVE-2009-2627?

The Acer LunchApp ActiveX control contains an insecure method vulnerability that allows remote attackers to execute arbitrary commands through the Run method. This flaw exposes systems utilizing Acer's ActiveX control to potential remote exploitation, enabling unauthorized command execution and compromising system integrity.

References

http://secunia.com/advisories/36343

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2009/2299

vdb-entryx_refsource_VUPEN

http://www.kb.cert.org/vuls/id/485961

third-party-advisoryx_refsource_CERT-VN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 19, 2009
Vulnerability Reserved
Jul 28, 2009