Lucene search
MitreCVE-2009-1022HistoryMar 20, 2009 - 12:30 a.m.
CVE-2009-1022
2009-03-2000:30:00
CWE-119
mitre
web.nvd.nist.gov
25
gom encoder
buffer overflow
denial of service
remote attack
subtitle file
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.4
Confidence
High
EPSS
0.077
Percentile
94.2%
Heap-based buffer overflow in the Preview/ Set Segment function in Gretech GOMlab GOM Encoder 1.0.0.11 and earlier allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a long text field in a subtitle (.srt) file.
Affected configurations
Node
gomlabgom_encoderRange≤1.0.0.11
| Vendor | Product | Version | CPE |
|---|---|---|---|
| gomlab | gom_encoder | * | cpe:2.3:a:gomlab:gom_encoder:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2009-1022
2009-03-20 00:00:00
exploitdb
exploitdb
Gretech GOM Encoder 1.0.0.11 - '.Subtitle' Buffer Overflow (PoC)
2009-03-16 00:00:00
prion
prion
Heap overflow
2009-03-20 00:30:00
nvd
nvd
CVE-2009-1022
2009-03-20 00:30:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.4
Confidence
High
EPSS
0.077
Percentile
94.2%
Related for CVE-2009-1022