ID CVE-2009-3819Type cveReporter cve@mitre.orgModified 2011-12-14T05:00:00
Description
Unspecified vulnerability in the Random Images (maag_randomimage) extension 1.6.4 and earlier for TYPO3 allows remote attackers to execute arbitrary shell commands via unspecified vectors.
{"id": "CVE-2009-3819", "bulletinFamily": "NVD", "title": "CVE-2009-3819", "description": "Unspecified vulnerability in the Random Images (maag_randomimage) extension 1.6.4 and earlier for TYPO3 allows remote attackers to execute arbitrary shell commands via unspecified vectors.", "published": "2009-10-28T10:30:00", "modified": "2011-12-14T05:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3819", "reporter": "cve@mitre.org", "references": ["http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-014/", "http://secunia.com/advisories/37095"], "cvelist": ["CVE-2009-3819"], "type": "cve", "lastseen": "2021-02-02T05:40:06", "edition": 6, "viewCount": 3, "enchantments": {"dependencies": {"references": [], "modified": "2021-02-02T05:40:06", "rev": 2}, "score": {"value": 8.1, "vector": "NONE", "modified": "2021-02-02T05:40:06", "rev": 2}, "vulnersScore": 8.1}, "cpe": ["cpe:/a:urs_maag:maag_randomimage:1.5.7", "cpe:/a:urs_maag:maag_randomimage:1.4.0", "cpe:/a:urs_maag:maag_randomimage:1.0.0", "cpe:/a:urs_maag:maag_randomimage:1.6.0", "cpe:/a:urs_maag:maag_randomimage:1.2.10", "cpe:/a:urs_maag:maag_randomimage:1.2.5", "cpe:/a:urs_maag:maag_randomimage:0.2.0", "cpe:/a:urs_maag:maag_randomimage:1.2.1", "cpe:/a:urs_maag:maag_randomimage:1.1.6", "cpe:/a:urs_maag:maag_randomimage:1.5.6", "cpe:/a:urs_maag:maag_randomimage:1.6.4", "cpe:/a:urs_maag:maag_randomimage:0.0.1", "cpe:/a:urs_maag:maag_randomimage:1.2.0", "cpe:/a:urs_maag:maag_randomimage:1.5.4", "cpe:/a:urs_maag:maag_randomimage:1.2.8", "cpe:/a:urs_maag:maag_randomimage:1.6.1", "cpe:/a:urs_maag:maag_randomimage:1.3.0", "cpe:/a:urs_maag:maag_randomimage:1.1.5", "cpe:/a:urs_maag:maag_randomimage:1.2.3", "cpe:/a:urs_maag:maag_randomimage:1.2.11", "cpe:/a:urs_maag:maag_randomimage:1.6.2", "cpe:/a:urs_maag:maag_randomimage:1.1.1", "cpe:/a:urs_maag:maag_randomimage:1.2.2", "cpe:/a:urs_maag:maag_randomimage:1.2.4", "cpe:/a:urs_maag:maag_randomimage:1.5.3", "cpe:/a:urs_maag:maag_randomimage:1.5.5", "cpe:/a:urs_maag:maag_randomimage:1.3.1", "cpe:/a:urs_maag:maag_randomimage:1.1.3", "cpe:/a:urs_maag:maag_randomimage:1.2.9", "cpe:/a:urs_maag:maag_randomimage:1.2.7", "cpe:/a:urs_maag:maag_randomimage:1.1.0", "cpe:/a:urs_maag:maag_randomimage:1.2.12", "cpe:/a:urs_maag:maag_randomimage:1.6.3", "cpe:/a:urs_maag:maag_randomimage:1.2.6", "cpe:/a:urs_maag:maag_randomimage:1.2.13", "cpe:/a:urs_maag:maag_randomimage:1.5.8", "cpe:/a:urs_maag:maag_randomimage:1.5.0", "cpe:/a:urs_maag:maag_randomimage:1.2.14", "cpe:/a:urs_maag:maag_randomimage:1.4.1"], "affectedSoftware": [{"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.5.0"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.8"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.9"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.3.1"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.1.6"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.1"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "0.2.0"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.10"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.3.0"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.0"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.4.0"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.6"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.2"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.0.0"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.11"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.1.1"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "le", "version": "1.6.4"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.6.1"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.1.0"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.14"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.12"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.7"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.13"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.6.3"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.5.8"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.6.2"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.4"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.4.1"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.5.7"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "0.0.1"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.5.6"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.5.5"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.1.5"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.5.3"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.5.4"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.1.3"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.6.0"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.5"}, {"cpeName": "urs_maag:maag_randomimage", "name": "urs maag maag randomimage", "operator": "eq", "version": "1.2.3"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:urs_maag:maag_randomimage:1.4.0:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.14:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.12:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.6:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.6.2:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:0.2.0:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.1.5:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.11:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.0:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.8:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.3:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.4:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.9:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.5.8:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.13:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.5.3:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.10:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.5.6:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.7:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.4.1:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.6.3:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.3.1:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.1.3:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.1.0:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.5.5:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.5.0:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.1.6:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.5:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:0.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.6.4:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.5.4:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.6.1:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.3.0:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.5.7:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:urs_maag:maag_randomimage:1.6.0:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null, "affectedConfiguration": [{"cpeName": "typo3:typo3", "name": "typo3", "operator": "eq", "version": "*"}], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.6.2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.4.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.6.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.3.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.9:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.5.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.10:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.11:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.6.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.13:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.6:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.1.5:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.1.6:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.6.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.5.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.1.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.8:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:0.2.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:0.0.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.5.6:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.5.7:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.12:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.1.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.3.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.5.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.6.4:*:*:*:*:*:*:*", "versionEndIncluding": "1.6.4", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.1.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.7:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.5.5:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.5:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.14:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.5.8:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.4.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.2.2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:urs_maag:maag_randomimage:1.0.0:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}, {"cpe_match": [{"cpe23Uri": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", "vulnerable": false}], "operator": "OR"}], "operator": "AND"}]}, "extraReferences": [{"name": "37095", "refsource": "SECUNIA", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/37095"}, {"name": "http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-014/", "refsource": "CONFIRM", "tags": ["Patch", "Vendor Advisory"], "url": "http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-014/"}]}
{}
