Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2014/03/31 12:0 a.m.6 views

Compface File long declaration Buffer Overflow - Ver2 (CVE-2009-2286)

A buffer overflow vulnerability has been reported in James Ashton Compface. An attacker could exploit this vulnerability by using a long declaration in a .xbm file. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected...

4.3CVSS6.5AI score0.03085EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/08/17 12:0 a.m.21 views

Mandrake Security Advisory MDVSA-2009:180 (compface)

The remote host is missing an update to compface announced via advisory MDVSA-2009:180. OpenVAS Vulnerability Test $Id: mdksa2009180.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:180 compface Authors: Thomas Reinke Copyright: Copyright c 2009 E-Sof...

4.3CVSS1.1AI score0.03085EPSS
Exploits1
seebug.org
seebug.org
added 2009/07/30 12:0 a.m.36 views

Compface '.xbm'文件缓冲区溢出漏洞

Bugraq ID: 35863 CVE ID:CVE-2009-2286 Compface是一款X-face格式转换的工具和库。 Compface处理'.xbm'文件存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 构建包含超长条目的'.xbm'文件,诱使用户解析,可导致任意代码执行。 MandrakeSoft Enterprise Server 5 x8664 MandrakeSoft Enterprise Server 5 James Ashton compface 1.5.2 Debian Linux 5.0 sparc Debian Linux 5.0 s/3...

4.3CVSS6.4AI score0.03085EPSS
Exploits1
OSV
OSV
added 2009/07/01 1:0 p.m.8 views

CVE-2009-2286

Buffer overflow in compface 1.5.2 and earlier allows user-assisted attackers to cause a denial of service crash via a long declaration in a .xbm file. NOTE: this issue only affects compface on distributions that used a certain patch...

6.5AI score
Exploits0References5
CVE
CVE
added 2009/07/01 12:26 p.m.65 views

CVE-2009-2286

CVE-2009-2286 affects compface 1.5.2 and earlier. The vulnerability is a buffer overflow in processing '.xbm' files caused by a long declaration, which can lead to a denial of service (crash). Exploitation requires user assistance, and the issue reportedly affects only distributions that used a s...

4.3CVSS6.7AI score0.03085EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder