Lucene search

[email protected]CVE-2009-1071

HistoryMar 26, 2009 - 5:51 a.m.

CVE-2009-1071

2009-03-2605:51:52

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-1071

icarus 2.0

buffer overflow

denial of service

remote code execution

portable game notation

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.093 Low

EPSS

Percentile

94.7%

JSON

Stack-based buffer overflow in Icarus 2.0 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted Portable Game Notation (.pgn) file.

Affected configurations

NVD

Node

randomsoftwareicarusMatch2.0

CPENameOperatorVersion
randomsoftware:icarusrandomsoftware icaruseq2.0

CPE	Name	Operator	Version
randomsoftware:icarus	randomsoftware icarus	eq	2.0

References

osvdb.org/52780

secunia.com/advisories/34368

www.securityfocus.com/bid/34167

exchange.xforce.ibmcloud.com/vulnerabilities/49309

www.exploit-db.com/exploits/8236

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.093 Low

EPSS

Percentile

94.7%

JSON

Related for CVE-2009-1071

nvd1 prion1 cvelist1