CVE-2009-0809

The Web Editor in Dassault Systemes ENOVIA SmarTeam V5 before Release 18 Service Pack 8, and possibly CATIA and other products, allows remote authenticated users to read the profile card of an object in the document class via a link that is sent from the owner of the document object.

Published: Mar 4, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-0809
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 3.5
AV:N/AC:M/Au:S/C:P/I:N/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
3ds / enovia_smarteam	-	5.18.x
ibm / catia	5.16	5.16.x
ibm / catia	5.17	5.17.x
ibm / catia	-	5.18.x

http://secunia.com/advisories/34037
http://www-01.ibm.com/support/docview.wss?uid=swg1HD80332
http://www.securityfocus.com/bid/33895
http://www.vupen.com/english/advisories/2009/0525

Vulnerability Database

289,871

CVE-2009-0809