CVE-2009-2375

Опубликовано: 08 июл. 2009

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Stack-based buffer overflow in Photo DVD Maker 8.02, and possibly earlier versions, allows remote attackers to execute arbitrary code via a long File_Name parameter in a .pdm file. NOTE: some of these details are obtained from third party information.

Ссылки

http://blog.bkis.com/?p=713
http://secunia.com/advisories/35709
Vendor Advisory
http://www.securityfocus.com/archive/1/504738/100/0/threaded
http://www.vupen.com/english/advisories/2009/1793
Vendor Advisory
http://blog.bkis.com/?p=713
http://secunia.com/advisories/35709
Vendor Advisory
http://www.securityfocus.com/archive/1/504738/100/0/threaded
http://www.vupen.com/english/advisories/2009/1793
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:*:*:*:*:*:*:*:*

Версия до 8.0.2 (включая)

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:5.20:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:5.30:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:5.31:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.0:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.01:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.10:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.12:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.20:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.22:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.23:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.30:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.32:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.40:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.52:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.53:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.54:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.55:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.60:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:6.61:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.03:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.04:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.05:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.10:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.11:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.12:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.15:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.22:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.30:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.32:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.33:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.34:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.40:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.50:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.52:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.55:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.56:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.58:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.71:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.73:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.77:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.78:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.80:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.90:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.91:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.92:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.93:*:*:*:*:*:*:*

cpe:2.3:a:photo-dvd-maker:photo_dvd_maker:7.96:*:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05938

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-26jq-wgp9-f66h

github

почти 4 года назад