Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbMaksymilian ArciemowiczEDB-ID:33364
HistoryNov 20, 2009 - 12:00 a.m.

KDE 4.3.3 - KDELibs 'dtoa()' Remote Code Execution

2009-11-2000:00:00
Maksymilian Arciemowicz
www.exploit-db.com
23

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/37080/info

KDE is prone to a remote code-execution vulnerability that affects KDELibs.

Successful exploits may allow an attacker to execute arbitrary code. Failed attacks may cause denial-of-service conditions.

NOTE: This issue is related to BID 35510 (Multiple BSD Distributions 'gdtoa/misc.c' Memory Corruption Vulnerability), but because of differences in the code base, it is being assigned its own record.

This issue affects KDE KDELibs 4.3.3; other versions may also be affected.

<script>
var a=0.<?php echo str_repeat("1",296450); ?>;
</script>

Related

openvas 51
seebug 13
prion 1
nessus 51
debiancve 1
redhat 4
securityvulns 11
opera 1
packetstorm 13
veracode 1
debian 5
fedora 2
threatpost 1
cvelist 1
exploitdb 10
nvd 2
cve 2
osv 3
ubuntu 2
chrome 1
oraclelinux 2
centos 3
mageia 1
exploitpack 5
freebsd 2
mozilla 1
zdt 6
ubuntucve 1
hackerone 1
suse 1
openvas
openvas
CentOS Update for kdelibs CESA-2009:1601 centos4 i386
2011-08-09 00:00:00
SLES10: Security update for mozilla-nspr
2009-11-11 00:00:00
RedHat Security Advisory RHSA-2009:1601
2009-12-03 00:00:00
seebug
seebug
多个BSD系统gdtoa/misc.c文件内存破坏漏洞
2009-06-30 00:00:00
Sun Solaris多个libc库数字转换函数缓冲区溢出漏洞
2010-05-25 00:00:00
KDE KDELibs 'dtoa()'远程代码执行漏洞
2009-11-24 00:00:00
prion
prion
Heap overflow
2009-07-01 13:00:00
nessus
nessus
SuSE 11 Security Update : kdelibs4 (SAT Patch Number 1747)
2010-01-12 00:00:00
openSUSE Security Update : opera (opera-1599)
2009-11-30 00:00:00
FreeBSD : mono -- DoS and code execution (4b3a7e70-afce-11e5-b864-14dae9d210b8)
2016-01-04 00:00:00
debiancve
debiancve
CVE-2009-0689
2009-07-01 13:00:01
redhat
redhat
(RHSA-2009:1601) Critical: kdelibs security update
2009-11-24 00:00:00
(RHSA-2014:0312) Critical: php security update
2014-03-18 00:00:00
(RHSA-2014:0311) Critical: php security update
2014-03-18 00:00:00
securityvulns
securityvulns
Camino 1.6.10 Remote Array Overrun &#40;Arbitrary code execution&#41;
2009-12-15 00:00:00
Sun Solaris 10 libc/*convert &#40;*cvt&#41; buffer overflow
2010-05-27 00:00:00
MacOS X 10.5/10.6 libc/strtod&#40;3&#41; buffer overflow
2010-01-08 00:00:00
opera
opera
Heap buffer overflow in string to number conversion
2009-11-20 00:00:00
packetstorm
packetstorm
Flock 2.5.2 Remote Array Overrun
2009-12-12 00:00:00
J 6.02.023 Array Overrun
2010-01-09 00:00:00
Matlab R2009b Array Overrun
2010-01-09 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:58:49
debian
debian
[SECURITY] [DLA 376-1] mono security update
2015-12-30 11:29:31
[SECURITY] [DSA 1998-1] New kdelibs packages fix arbitrary code execution
2010-02-17 18:25:18
[SECURITY] [DLA 1564-1] mono security update
2018-11-01 19:42:40
fedora
fedora
[SECURITY] Fedora 23 Update: mono-4.0.5-2.fc23
2015-12-29 22:26:22
[SECURITY] Fedora 11 Update: seamonkey-1.1.19-1.fc11
2010-04-21 21:53:31
threatpost
threatpost
'High Risk' Flaw Fixed in Google Chrome
2009-10-06 22:32:02
cvelist
cvelist
CVE-2009-0689
2009-07-01 12:26:00
exploitdb
exploitdb
MATLAB R2009b - &#039;dtoa&#039; Implementation Memory Corruption
2010-01-08 00:00:00
Sunbird 0.9 - Array Overrun Code Execution
2009-12-11 00:00:00
Opera Web Browser 10.01 - &#039;dtoa()&#039; Remote Code Execution
2009-11-20 00:00:00
nvd
nvd
CVE-2009-0689
2009-07-01 13:00:01
CVE-2009-1563
2009-10-29 14:30:00
cve
cve
CVE-2009-0689
2009-07-01 13:00:01
CVE-2009-1563
2009-10-29 14:30:00
osv
osv
mono - security update
2015-12-30 00:00:00
mono - security update
2018-11-01 00:00:00
kdelibs - arbitrary code execution
2010-02-17 00:00:00
ubuntu
ubuntu
KDE vulnerabilities
2009-12-11 00:00:00
Thunderbird vulnerabilities
2010-03-18 00:00:00
chrome
chrome
Stable Channel Update
2009-09-30 00:00:00
oraclelinux
oraclelinux
kdelibs security update
2009-11-24 00:00:00
php security update
2014-03-18 00:00:00
centos
centos
kdelibs security update
2009-11-25 14:52:10
php security update
2014-03-19 01:15:26
seamonkey security update
2009-10-28 13:15:48
mageia
mageia
Updated mono packages fix security vulnerability
2016-01-14 04:44:39
exploitpack
exploitpack
Sunbird 0.9 - Array Overrun Code Execution
2009-12-11 00:00:00
KDE KDELibs 4.3.3 - Remote Array Overrun
2009-11-19 00:00:00
SeaMonkey 1.1.8 - Remote Array Overrun
2009-11-19 00:00:00
freebsd
freebsd
mono -- DoS and code execution
2015-12-19 00:00:00
opera -- multiple vulnerabilities
2009-11-23 00:00:00
mozilla
mozilla
Heap buffer overflow in string to number conversion — Mozilla
2009-10-27 00:00:00
zdt
zdt
Sunbird 0.9 Array Overrun (code execution) 0day
2009-12-11 00:00:00
MacOS X 10.6.3 filesystem hfs Denial of Service Vulnerability
2010-04-24 00:00:00
K-Meleon 1.5.3 Remote Array Overrun
2009-11-19 00:00:00
ubuntucve
ubuntucve
CVE-2009-0689
2009-07-01 00:00:00
hackerone
hackerone
Ruby: Ruby: Heap Overflow in Floating Point Parsing
2013-11-22 00:00:00
suse
suse
Security update for ruby (critical)
2013-12-05 18:04:15

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:33364
openvas51seebug13prion1nessus51debiancve1redhat4securityvulns11opera1packetstorm13veracode1debian5fedora2threatpost1cvelist1exploitdb10nvd2cve2osv3ubuntu2chrome1oraclelinux2centos3mageia1exploitpack5freebsd2mozilla1zdt6ubuntucve1hackerone1suse1