CVE-2009-0809

Published: Mar 4, 2009Modified: Apr 23, 2026

3.5

Vector

AV:N/AC:M/Au:S/C:P/I:N/A:N

Exploitability: 6.8 / Impact: 2.9

Source: NVD

Description

The Web Editor in Dassault Systemes ENOVIA SmarTeam V5 before Release 18 Service Pack 8, and possibly CATIA and other products, allows remote authenticated users to read the profile card of an object in the document class via a link that is sent from the owner of the document object.

Affected (4)

Products: 3ds: Enovia Smarteam · Ibm: Catia

1 product

Enovia Smarteam

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
3ds Enovia Smarteam	Up to 5.18
Ibm Catia	Up to 5.18
Ibm Catia	Version 5.16
Ibm Catia	Version 5.17

Related CWEs

References (8)

http://secunia.com/advisories/34037

Source: cve@mitre.org

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg1HD80332

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/33895

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2009/0525

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/34037

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg1HD80332

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/33895

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2009/0525

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.