Lucene search

[email protected]CVE-2009-3050

HistorySep 02, 2009 - 5:30 p.m.

CVE-2009-3050

2009-09-0217:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-3050

buffer overflow

htmldoc

util.cxx

nvd

security vulnerability

code execution

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.006 Low

EPSS

Percentile

78.6%

JSON

Buffer overflow in the set_page_size function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were additional vectors in htmllib.cxx and ps-pdf.cxx using an AFM font file with a long glyph name, but these vectors do not cross privilege boundaries.

CPENameOperatorVersion
htmldoc:htmldochtmldoceq1.8.26
htmldoc:htmldochtmldocle1.8.27
htmldoc:htmldochtmldoceq1.8.24
htmldoc:htmldochtmldoceq1.8.25

CPE	Name	Operator	Version
htmldoc:htmldoc	htmldoc	eq	1.8.26
htmldoc:htmldoc	htmldoc	le	1.8.27
htmldoc:htmldoc	htmldoc	eq	1.8.24
htmldoc:htmldoc	htmldoc	eq	1.8.25

References

bugs.gentoo.org/show_bug.cgi?id=278186

packetstormsecurity.org/0907-exploits/htmldoc-overflow.txt

secunia.com/advisories/35780

www.htmldoc.org/str.php?L214

www.openwall.com/lists/oss-security/2009/07/25/3

www.openwall.com/lists/oss-security/2009/07/26/2

www.openwall.com/lists/oss-security/2009/09/01/1

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.006 Low

EPSS

Percentile

78.6%

JSON

Related for CVE-2009-3050

prion1 openvas6 gentoo1 securityvulns2 nessus5 ubuntucve1 debiancve1