Lucene search
Ubuntu.comUB:CVE-2009-3476HistorySep 29, 2009 - 12:00 a.m.
CVE-2009-3476
2009-09-2900:00:00
ubuntu.com
ubuntu.com
14
0.035 Low
EPSS
Percentile
91.5%
Buffer overflow in OpenSAML before 1.1.3 as used in Internet2 Shibboleth
Service Provider software 1.3.x before 1.3.4, and XMLTooling before 1.2.2
as used in Internet2 Shibboleth Service Provider software 2.x before 2.2.1,
allows remote attackers to cause a denial of service and possibly execute
arbitrary code via a malformed encoded URL.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 8.10 | noarch | opensaml | < 1.1.1-2+lenny1build0.8.10.2 | UNKNOWN |
| ubuntu | 9.04 | noarch | opensaml | < 1.1.1-2+lenny1build0.9.04.2 | UNKNOWN |
| ubuntu | 9.04 | noarch | shibboleth-sp | < 1.3.1.dfsg1-3+lenny1build0.9.04.2 | UNKNOWN |
| ubuntu | 8.10 | noarch | xmltooling | < 1.0-2+lenny1build0.8.10.1 | UNKNOWN |
| ubuntu | 9.04 | noarch | xmltooling | < 1.0-2+lenny1build0.9.04.1 | UNKNOWN |
Related
cve
cve
CVE-2009-3476
2009-09-29 23:30:00
debiancve
debiancve
CVE-2009-3476
2009-09-29 23:30:00
prion
prion
Buffer overflow
2009-09-29 23:30:00
cvelist
cvelist
CVE-2009-3476
2009-09-29 23:00:00
osv
osv
xmltooling - potential code execution
2009-09-24 00:00:00
opensaml2, shibboleth-sp2 - interpretation conflict
2009-09-24 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1896-1)
2009-10-06 00:00:00
Debian: Security Advisory (DSA-1895-2)
2009-10-19 00:00:00
Debian: Security Advisory (DSA-1895-1)
2009-09-28 00:00:00