Lucene search

[email protected]CVE-2009-3253

HistorySep 18, 2009 - 8:30 p.m.

CVE-2009-3253

2009-09-1820:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-3253

tricerasoft swift ultralite

buffer overflow

denial of service

arbitrary code execution

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

High

0.137 Low

EPSS

Percentile

95.7%

JSON

Stack-based buffer overflow in TriceraSoft Swift Ultralite 1.032 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long string in a .M3U playlist file.

Affected configurations

NVD

Node

tricerasoftswift_ultraliteMatch1.032

CPENameOperatorVersion
tricerasoft:swift_ultralitetricerasoft swift ultraliteeq1.032

CPE	Name	Operator	Version
tricerasoft:swift_ultralite	tricerasoft swift ultralite	eq	1.032

References

secunia.com/advisories/36508

www.exploit-db.com/exploits/9546

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

High

0.137 Low

EPSS

Percentile

95.7%

JSON

Related for CVE-2009-3253

nvd1 seebug1 prion1 cvelist1