CVE-2009-0689

🗓️ 01 Jul 2009 00:00:00Reported by ubuntu.comType

Array index error in dtoa implementation allows attackers to cause denial of service and possibly execute arbitrary code via large precision value in printf function, leading to heap-based buffer overflow in libc used in multiple products including FreeBSD, NetBSD, OpenBSD, Mozilla Firefox, K-Meleon and SeaMonkey

Reporter	Title	Published	Views	Family All 199
exploitpack	KDE KDELibs 4.3.3 - Remote Array Overrun	19 Nov 200900:00	–	exploitpack
exploitpack	SeaMonkey 1.1.8 - Remote Array Overrun	19 Nov 200900:00	–	exploitpack
exploitpack	Opera 10.01 - Remote Array Overrun	19 Nov 200900:00	–	exploitpack
exploitpack	K-Meleon 1.5.3 - Remote Array Overrun	19 Nov 200900:00	–	exploitpack
exploitpack	Sunbird 0.9 - Array Overrun Code Execution	11 Dec 200900:00	–	exploitpack
securityvulns	K-Meleon 1.5.3 Remote Array Overrun (Arbitrary code execution)	20 Nov 200900:00	–	securityvulns
securityvulns	Opera 10.01 Remote Array Overrun (Arbitrary code execution)	20 Nov 200900:00	–	securityvulns
securityvulns	KDE KDELibs 4.3.3 Remote Array Overrun (Arbitrary code execution)	20 Nov 200900:00	–	securityvulns
securityvulns	Firefox 3.5.3 Remote Array Overrun (UPDATE)	20 Nov 200900:00	–	securityvulns
securityvulns	SeaMonkey 1.1.8 Remote Array Overrun (Arbitrary code execution)	20 Nov 200900:00	–	securityvulns

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2009-0689
launchpad	www.launchpad.net/bugs/cve/CVE-2009-0689
security-tracker	www.security-tracker.debian.org/tracker/CVE-2009-0689

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Jul 2009 00:00Current

6.9Medium risk

Vulners AI Score6.9

CVSS26.8

EPSS0.53588