CVE-2009-1216

Опубликовано: 01 апр. 2009

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

Multiple unspecified vulnerabilities in (1) unlzh.c and (2) unpack.c in the gzip libraries in Microsoft Windows Server 2008, Windows Services for UNIX 3.0 and 3.5, and the Subsystem for UNIX-based Applications (SUA); as used in gunzip, gzip, pack, pcat, and unpack 7.x before 7.0.1701.48, 8.x before 8.0.1969.62, and 9.x before 9.0.3790.2076; allow remote attackers to execute arbitrary code via unknown vectors.

Ссылки

http://secunia.com/advisories/34428
Vendor Advisory
http://securitytracker.com/id?1021937
http://support.microsoft.com/kb/953602
Vendor Advisory
http://www.securityfocus.com/bid/34258
http://www.vupen.com/english/advisories/2009/0849
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/49435
http://secunia.com/advisories/34428
Vendor Advisory
http://securitytracker.com/id?1021937
http://support.microsoft.com/kb/953602
Vendor Advisory
http://www.securityfocus.com/bid/34258
http://www.vupen.com/english/advisories/2009/0849
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/49435

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:subsystem_for_unix-based_applications:*:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:windows_services_for_unix:3.0:-:std:*:*:*:*:*

cpe:2.3:a:microsoft:windows_services_for_unix:3.5:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_vista:*:*:enterprise:*:*:*:*:*

cpe:2.3:o:microsoft:windows_vista:*:*:ultimate:*:*:*:*:*

EPSS

Процентиль: 97%

0.42573

Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2009-1216

debian

почти 17 лет назад

Multiple unspecified vulnerabilities in (1) unlzh.c and (2) unpack.c i ...

GHSA-857c-xvrg-r737

github

почти 4 года назад