Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-0577
HistoryFeb 20, 2009 - 7:30 p.m.

CVE-2009-0577

2009-02-2019:30:00
CWE-189
[email protected]
web.nvd.nist.gov
28
cve-2009-0577
integer overflow
writeprolog function
cups
red hat enterprise linux
rhel 3
remote code execution
postscript
buffer overflow

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

High

0.85 High

EPSS

Percentile

98.5%

JSON

Integer overflow in the WriteProlog function in texttops in CUPS 1.1.17 on Red Hat Enterprise Linux (RHEL) 3 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow. NOTE: this issue exists because of an incorrect fix for CVE-2008-3640.

Affected configurations

NVD
Node
applecupsMatch1.1.17
AND
redhatenterprise_linuxMatch3
CPENameOperatorVersion
apple:cupsapple cupseq1.1.17

Related

centos 2
openvas 44
nvd 2
nessus 21
cvelist 2
redhat 2
prion 2
checkpoint_advisories 1
oraclelinux 2
veracode 1
cve 1
ubuntucve 1
debiancve 1
slackware 1
debian 1
osv 1
freebsd 1
gentoo 1
ubuntu 1
fedora 5
centos
centos
cups security update
2009-02-19 18:19:28
cups security update
2008-10-10 08:49:24
openvas
openvas
CentOS Security Advisory CESA-2009:0308 (cups)
2009-02-23 00:00:00
RedHat Security Advisory RHSA-2009:0308
2009-02-23 00:00:00
CentOS Update for cups CESA-2009:0308 centos3 i386
2011-08-09 00:00:00
nvd
nvd
CVE-2009-0577
2009-02-20 19:30:00
CVE-2008-3640
2008-10-14 21:10:35
nessus
nessus
RHEL 3 : cups (RHSA-2009:0308)
2009-02-20 00:00:00
CentOS 3 / 4 : cups (CESA-2009:0308)
2009-02-20 00:00:00
Scientific Linux Security Update : cups on SL3.x i386/x86_64
2012-08-01 00:00:00
cvelist
cvelist
CVE-2009-0577
2009-02-20 19:00:00
CVE-2008-3640
2008-10-14 20:00:00
redhat
redhat
(RHSA-2009:0308) Important: cups security update
2009-02-19 00:00:00
(RHSA-2008:0937) Important: cups security update
2008-10-10 00:00:00
prion
prion
Integer overflow
2009-02-20 19:30:00
Integer overflow
2008-10-14 21:10:00
checkpoint_advisories
checkpoint_advisories
Apple CUPS Text-to-PostScript texttops Filter Integer Overflow (CVE-2008-3640)
2010-01-10 00:00:00
oraclelinux
oraclelinux
cups security update
2009-02-19 00:00:00
cups security update
2008-10-10 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:35:04
cve
cve
CVE-2008-3640
2008-10-14 21:10:35
ubuntucve
ubuntucve
CVE-2008-3640
2008-10-14 00:00:00
debiancve
debiancve
CVE-2008-3640
2008-10-14 21:10:35
slackware
slackware
[slackware-security] cups
2008-11-08 23:38:23
debian
debian
[SECURITY] [DSA 1656-1] New cupsys packages fix several vulnerabilities
2008-10-20 17:21:43
osv
osv
cupsys - several vulnerabilities
2008-10-20 00:00:00
freebsd
freebsd
cups -- multiple vulnerabilities
2008-10-09 00:00:00
gentoo
gentoo
CUPS: Multiple vulnerabilities
2008-12-10 00:00:00
ubuntu
ubuntu
CUPS vulnerabilities
2008-10-15 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: cups-1.3.9-1.fc9
2008-10-16 02:08:34
[SECURITY] Fedora 9 Update: cups-1.3.9-2.fc9
2008-12-09 11:35:52
[SECURITY] Fedora 8 Update: cups-1.3.9-1.fc8
2008-10-16 02:03:57

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

High

0.85 High

EPSS

Percentile

98.5%

JSON
Related for CVE-2009-0577
centos2openvas44nvd2nessus21cvelist2redhat2prion2checkpoint_advisories1oraclelinux2veracode1cve1ubuntucve1debiancve1slackware1debian1osv1freebsd1gentoo1ubuntu1fedora5