Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-3126
HistoryOct 14, 2009 - 10:30 a.m.

CVE-2009-3126

2009-10-1410:30:00
CWE-189
[email protected]
web.nvd.nist.gov
81
cve-2009-3126
integer overflow
gdi+
microsoft
internet explorer
windows xp
office
office project
visio
word viewer
excel viewer
powerpoint viewer
compatibility pack
expression web
groove
works
sql server
report viewer
forefront client security
png
vulnerability
nvd

9.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.874 High

EPSS

Percentile

98.6%

JSON

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold and SP3, Office Excel Viewer, Office PowerPoint Viewer 2007 Gold, SP1, and SP2, Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2, Expression Web, Expression Web 2, Groove 2007 Gold and SP1, Works 8.5, SQL Server 2000 Reporting Services SP2, SQL Server 2005 SP2 and SP3, Report Viewer 2005 SP1, Report Viewer 2008 Gold and SP1, and Forefront Client Security 1.0 allows remote attackers to execute arbitrary code via a crafted PNG image file, aka β€œGDI+ PNG Integer Overflow Vulnerability.”

Related

checkpoint_advisories 2
prion 1
mskb 1
nessus 2
securityvulns 2
openvas 2
seebug 1
ibm 2
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against Microsoft GDI+ PNG Integer Overflow Vulnerability (MS09-062)
2009-10-13 00:00:00
Microsoft Windows GDI+ PNG Processing Integer Overflow (MS09-062; CVE-2009-3126)
2010-01-31 00:00:00
prion
prion
Integer overflow
2009-10-14 10:30:00
mskb
mskb
KB957488 - MS09-062: Vulnerabilities in GDI+ could allow remote code execution
2020-10-20 07:11:43
nessus
nessus
MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488) (uncredentialed check)
2014-03-10 00:00:00
MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488)
2009-10-15 00:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS09-062 - Critical Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488)
2009-10-14 00:00:00
Microsoft GDI+ multiple security vulnerabilities
2009-10-14 00:00:00
openvas
openvas
Microsoft Products GDI Plus Code Execution Vulnerabilities (957488)
2009-10-21 00:00:00
Microsoft Products GDI Plus Code Execution Vulnerabilities (957488)
2009-10-21 00:00:00
seebug
seebug
Microsoft GDI+εΊ“ε›Ύε½’ζ–‡δ»Άε€„η†ε€šδΈͺηΌ“ε†²εŒΊζΊ’ε‡Ίε’Œε†…ε­˜η ΄εζΌζ΄ž(MS09-062)
2009-10-20 00:00:00
ibm
ibm
Security Bulletin: IBM Cognos Business Intelligence has addressed multiple vulnerabilties
2019-12-19 21:01:39
Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilties
2019-12-19 15:30:15

9.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.874 High

EPSS

Percentile

98.6%

JSON
Related for CVE-2009-3126
checkpoint_advisories2prion1mskb1nessus2securityvulns2openvas2seebug1ibm2