Lucene search

K
nvd[email protected]NVD:CVE-2009-1721
HistoryJul 31, 2009 - 7:00 p.m.

CVE-2009-1721

2009-07-3119:00:01
CWE-824
web.nvd.nist.gov
8

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

High

EPSS

0.005

Percentile

75.6%

The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger a free of an uninitialized pointer.

Affected configurations

Nvd
Node
openexropenexrMatch1.2.2
OR
openexropenexrMatch1.6.1
Node
opensuseopensuseMatch10.0
OR
opensuseopensuseMatch10.3
OR
opensuseopensuseMatch11.0
Node
applemac_os_xRange<10.5.8
Node
debiandebian_linuxMatch4.0
OR
debiandebian_linuxMatch5.0
Node
canonicalubuntu_linuxMatch8.04
OR
canonicalubuntu_linuxMatch8.10
OR
canonicalubuntu_linuxMatch9.04
Node
fedoraprojectfedoraMatch10
OR
fedoraprojectfedoraMatch11
VendorProductVersionCPE
openexropenexr1.2.2cpe:2.3:a:openexr:openexr:1.2.2:*:*:*:*:*:*:*
openexropenexr1.6.1cpe:2.3:a:openexr:openexr:1.6.1:*:*:*:*:*:*:*
opensuseopensuse10.0cpe:2.3:o:opensuse:opensuse:10.0:*:*:*:*:*:*:*
opensuseopensuse10.3cpe:2.3:o:opensuse:opensuse:10.3:*:*:*:*:*:*:*
opensuseopensuse11.0cpe:2.3:o:opensuse:opensuse:11.0:*:*:*:*:*:*:*
applemac_os_x*cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
debiandebian_linux4.0cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
debiandebian_linux5.0cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
canonicalubuntu_linux8.04cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:*:*:*:*
canonicalubuntu_linux8.10cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*
Rows per page:
1-10 of 131

References

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

High

EPSS

0.005

Percentile

75.6%