Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2009-0363

Опубликовано: 17 фев. 2009
Источник: nvd
CVSS2: 7.5
EPSS Низкий

Описание

Multiple buffer overflows in (a) BarnOwl before 1.0.5 and (b) owl 2.1.11 allow remote attackers to execute arbitrary code via vectors involving (1) a crafted zcrypt message, related to zcrypt.c; (2) a reply command on a message with a Zephyr Cc: list, related to zwrite.c; and unspecified other use of the products.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:barnowl:barnowl:*:*:*:*:*:*:*:*
Версия до 1.0.4.1 (включая)
cpe:2.3:a:barnowl:barnowl:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:barnowl:barnowl:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:barnowl:barnowl:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:barnowl:barnowl:1.0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:barnowl:barnowl:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:barnowl:barnowl:1.0.4:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:a:ktools:owl:2.1.11:*:*:*:*:*:*:*

EPSS

Процентиль: 89%
0.04323
Низкий

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2009-0363

ubuntu
почти 17 лет назад

Multiple buffer overflows in (a) BarnOwl before 1.0.5 and (b) owl 2.1.11 allow remote attackers to execute arbitrary code via vectors involving (1) a crafted zcrypt message, related to zcrypt.c; (2) a reply command on a message with a Zephyr Cc: list, related to zwrite.c; and unspecified other use of the products.

debian логотип

CVE-2009-0363

debian
почти 17 лет назад

Multiple buffer overflows in (a) BarnOwl before 1.0.5 and (b) owl 2.1. ...

github логотип

GHSA-65gq-25hv-4hvc

github
почти 4 года назад

Multiple buffer overflows in (a) BarnOwl before 1.0.5 and (b) owl 2.1.11 allow remote attackers to execute arbitrary code via vectors involving (1) a crafted zcrypt message, related to zcrypt.c; (2) a reply command on a message with a Zephyr Cc: list, related to zwrite.c; and unspecified other use of the products.

EPSS

Процентиль: 89%
0.04323
Низкий

7.5 High

CVSS2

Дефекты

CWE-119