VYPR
Unrated severityNVD Advisory· Published Feb 15, 2010· Updated Jun 16, 2026

CVE-2009-4643

CVE-2009-4643

Description

Stack-based buffer overflow in dsInstallerService.dll in the Juniper Installer Service, as used in Juniper Odyssey Access Client 4.72.11421.0 and other products, allows remote attackers to execute arbitrary code via a long string in a malformed DSSETUPSERVICE_CMD_UNINSTALL command to the NeoterisSetupService named pipe.

Affected products

2
  • cpe:2.3:a:juniper:odyssey_access_client:4.72.11421.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:juniper:odyssey_access_client:4.72.11421.0:*:*:*:*:*:*:*
    • (no CPE)range: =4.72.11421.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.