Lucene search

K

[email protected]NVD:CVE-2010-0409

HistoryFeb 08, 2010 - 9:30 p.m.

CVE-2010-0409

2010-02-0821:30:00

CWE-119

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

87.2%

Buffer overflow in the GMIME_UUENCODE_LEN macro in gmime/gmime-encodings.h in GMime before 2.4.15 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via input data for a uuencode operation.

Affected configurations

NVD

Node

gnomegmimeMatch2.4.0

OR

gnomegmimeMatch2.4.1

OR

gnomegmimeMatch2.4.2

OR

gnomegmimeMatch2.4.3

OR

gnomegmimeMatch2.4.4

OR

gnomegmimeMatch2.4.5

OR

gnomegmimeMatch2.4.6

OR

gnomegmimeMatch2.4.7

OR

gnomegmimeMatch2.4.8

OR

gnomegmimeMatch2.4.9

OR

gnomegmimeMatch2.4.10

OR

gnomegmimeMatch2.4.11

OR

gnomegmimeMatch2.4.12

OR

gnomegmimeMatch2.4.13

References

ftp.gnome.org/pub/GNOME/sources/gmime/2.4/gmime-2.4.14-2.4.15.diff.gz

ftp.gnome.org/pub/GNOME/sources/gmime/2.4/gmime-2.4.15.changes

lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html

secunia.com/advisories/38459

secunia.com/advisories/38915

www.openwall.com/lists/oss-security/2010/02/03/2

www.openwall.com/lists/oss-security/2010/02/03/4

bugzilla.redhat.com/show_bug.cgi?id=561457

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

87.2%

Related for NVD:CVE-2010-0409

cve1 cvelist1 nessus7 openvas3 securityvulns2 prion1 ubuntucve1 gentoo1 debian1