CVE-2009-1566

Опубликовано: 03 дек. 2009

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Integer overflow in Roxio Easy Media Creator 9.0.136, and Roxio Creator 2010 before SP1, might allow remote attackers to execute arbitrary code via an image with crafted dimensions.

Ссылки

http://secunia.com/advisories/36069
Vendor Advisory
http://secunia.com/secunia_research/2009-38/
Vendor Advisory
http://www.securityfocus.com/archive/1/508165/100/0/threaded
http://www.securityfocus.com/bid/37183
http://www.vupen.com/english/advisories/2009/3375
https://exchange.xforce.ibmcloud.com/vulnerabilities/54496
http://secunia.com/advisories/36069
Vendor Advisory
http://secunia.com/secunia_research/2009-38/
Vendor Advisory
http://www.securityfocus.com/archive/1/508165/100/0/threaded
http://www.securityfocus.com/bid/37183
http://www.vupen.com/english/advisories/2009/3375
https://exchange.xforce.ibmcloud.com/vulnerabilities/54496

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:roxio:creator:*:*:*:*:*:*:*:*

Версия до 9.0.136 (включая)

cpe:2.3:a:roxio:easy_media_creator:9.0.136:*:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05277

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-189

Связанные уязвимости

GHSA-635q-j2j7-xc56

github

почти 4 года назад