Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2009-3293
HistorySep 22, 2009 - 10:30 a.m.

CVE-2009-3293

2009-09-2210:30:00
mitre
web.nvd.nist.gov
70
cve-2009-3293
php
imagecolortransparent
vulnerability
nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

High

EPSS

0.018

Percentile

88.1%

JSON

Unspecified vulnerability in the imagecolortransparent function in PHP before 5.2.11 has unknown impact and attack vectors related to an incorrect “sanity check for the color index.”

Affected configurations

Nvd
Node
phpphpRange5.2.10
OR
phpphpMatch1.0
OR
phpphpMatch2.0
OR
phpphpMatch2.0b10
OR
phpphpMatch3.0
OR
phpphpMatch3.0.1
OR
phpphpMatch3.0.2
OR
phpphpMatch3.0.3
OR
phpphpMatch3.0.4
OR
phpphpMatch3.0.5
OR
phpphpMatch3.0.6
OR
phpphpMatch3.0.7
OR
phpphpMatch3.0.8
OR
phpphpMatch3.0.9
OR
phpphpMatch3.0.10
OR
phpphpMatch3.0.11
OR
phpphpMatch3.0.12
OR
phpphpMatch3.0.13
OR
phpphpMatch3.0.14
OR
phpphpMatch3.0.15
OR
phpphpMatch3.0.16
OR
phpphpMatch3.0.17
OR
phpphpMatch3.0.18
OR
phpphpMatch4
OR
phpphpMatch4.0
OR
phpphpMatch4.0beta_4_patch1
OR
phpphpMatch4.0beta1
OR
phpphpMatch4.0beta2
OR
phpphpMatch4.0beta3
OR
phpphpMatch4.0beta4
OR
phpphpMatch4.0rc1
OR
phpphpMatch4.0rc2
OR
phpphpMatch4.0.0
OR
phpphpMatch4.0.1
OR
phpphpMatch4.0.1patch1
OR
phpphpMatch4.0.1patch2
OR
phpphpMatch4.0.2
OR
phpphpMatch4.0.3
OR
phpphpMatch4.0.3patch1
OR
phpphpMatch4.0.4
OR
phpphpMatch4.0.4patch1
OR
phpphpMatch4.0.5
OR
phpphpMatch4.0.6
OR
phpphpMatch4.0.7
OR
phpphpMatch4.0.7rc1
OR
phpphpMatch4.0.7rc2
OR
phpphpMatch4.0.7rc3
OR
phpphpMatch4.0.7rc4
OR
phpphpMatch4.1.0
OR
phpphpMatch4.1.1
OR
phpphpMatch4.1.2
OR
phpphpMatch4.2dev
OR
phpphpMatch4.2.0
OR
phpphpMatch4.2.1
OR
phpphpMatch4.2.2
OR
phpphpMatch4.2.3
OR
phpphpMatch4.3.0
OR
phpphpMatch4.3.1
OR
phpphpMatch4.3.2
OR
phpphpMatch4.3.3
OR
phpphpMatch4.3.4
OR
phpphpMatch4.3.5
OR
phpphpMatch4.3.6
OR
phpphpMatch4.3.7
OR
phpphpMatch4.3.8
OR
phpphpMatch4.3.9
OR
phpphpMatch4.3.10
OR
phpphpMatch4.3.11
OR
phpphpMatch4.4.0
OR
phpphpMatch4.4.1
OR
phpphpMatch4.4.2
OR
phpphpMatch4.4.3
OR
phpphpMatch4.4.4
OR
phpphpMatch4.4.5
OR
phpphpMatch4.4.6
OR
phpphpMatch4.4.7
OR
phpphpMatch4.4.8
OR
phpphpMatch4.4.9
OR
phpphpMatch5
OR
phpphpMatch5.0rc1
OR
phpphpMatch5.0rc2
OR
phpphpMatch5.0rc3
OR
phpphpMatch5.0.0
OR
phpphpMatch5.0.0beta1
OR
phpphpMatch5.0.0beta2
OR
phpphpMatch5.0.0beta3
OR
phpphpMatch5.0.0beta4
OR
phpphpMatch5.0.0rc1
OR
phpphpMatch5.0.0rc2
OR
phpphpMatch5.0.0rc3
OR
phpphpMatch5.0.1
OR
phpphpMatch5.0.2
OR
phpphpMatch5.0.3
OR
phpphpMatch5.0.4
OR
phpphpMatch5.0.5
OR
phpphpMatch5.1.0
OR
phpphpMatch5.1.1
OR
phpphpMatch5.1.2
OR
phpphpMatch5.1.3
OR
phpphpMatch5.1.4
OR
phpphpMatch5.1.5
OR
phpphpMatch5.1.6
OR
phpphpMatch5.2.0
OR
phpphpMatch5.2.2
OR
phpphpMatch5.2.4
OR
phpphpMatch5.2.6
OR
phpphpMatch5.2.7
OR
phpphpMatch5.2.8
OR
phpphpMatch5.2.9
VendorProductVersionCPE
phpphp*cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
phpphp1.0cpe:2.3:a:php:php:1.0:*:*:*:*:*:*:*
phpphp2.0cpe:2.3:a:php:php:2.0:*:*:*:*:*:*:*
phpphp2.0b10cpe:2.3:a:php:php:2.0b10:*:*:*:*:*:*:*
phpphp3.0cpe:2.3:a:php:php:3.0:*:*:*:*:*:*:*
phpphp3.0.1cpe:2.3:a:php:php:3.0.1:*:*:*:*:*:*:*
phpphp3.0.2cpe:2.3:a:php:php:3.0.2:*:*:*:*:*:*:*
phpphp3.0.3cpe:2.3:a:php:php:3.0.3:*:*:*:*:*:*:*
phpphp3.0.4cpe:2.3:a:php:php:3.0.4:*:*:*:*:*:*:*
phpphp3.0.5cpe:2.3:a:php:php:3.0.5:*:*:*:*:*:*:*
Rows per page:
1-10 of 1091

Related

f5 2
nvd 2
prion 2
ubuntucve 2
cvelist 2
openvas 35
freebsd 3
securityvulns 3
debiancve 1
cve 1
nessus 20
slackware 1
seebug 1
ubuntu 1
amazon 1
gentoo 1
f5
f5
SOL13275 - PHP vulnerability CVE-2009-3293
2011-12-15 00:00:00
K13275 : PHP vulnerability CVE-2009-3293
2013-09-12 00:00:00
nvd
nvd
CVE-2009-3293
2009-09-22 10:30:00
CVE-2009-3546
2009-10-19 20:00:00
prion
prion
Design/Logic Flaw
2009-09-22 10:30:00
Buffer overflow
2009-10-19 20:00:00
ubuntucve
ubuntucve
CVE-2009-3293
2009-09-22 00:00:00
CVE-2009-3546
2009-10-19 00:00:00
cvelist
cvelist
CVE-2009-3293
2009-09-22 10:00:00
CVE-2009-3546
2009-10-19 19:27:00
openvas
openvas
Mandrake Security Advisory MDVSA-2009:285 (php)
2009-10-27 00:00:00
Mandrake Security Advisory MDVSA-2009:285 (php)
2009-10-27 00:00:00
Mandriva Security Advisory MDVSA-2009:284-1 (gd)
2009-12-10 00:00:00
freebsd
freebsd
gd -- '_gdGetColors' remote buffer overflow vulnerability
2009-10-15 00:00:00
php5 -- Multiple security issues
2009-09-17 00:00:00
libwmf -- multiple vulnerabilities
2004-10-12 00:00:00
securityvulns
securityvulns
[ MDVSA-2009:284 ] gd
2009-10-20 00:00:00
[ MDVSA-2009:248 ] php
2009-09-28 00:00:00
PHP multiple security vulnerabilities
2009-10-20 00:00:00
debiancve
debiancve
CVE-2009-3546
2009-10-19 20:00:00
cve
cve
CVE-2009-3546
2009-10-19 20:00:00
nessus
nessus
FreeBSD : gd -- '_gdGetColors' remote buffer overflow vulnerability (4e8344a3-ca52-11de-8ee8-00215c6a37bb)
2009-11-09 00:00:00
Mandriva Linux Security Advisory : gd (MDVSA-2009:284-1)
2009-10-22 00:00:00
Mandriva Linux Security Advisory : php (MDVSA-2009:248)
2010-07-30 00:00:00
slackware
slackware
php
2009-10-04 00:01:56
seebug
seebug
PHP 5.2.11版本修复多个安全漏洞
2009-09-23 00:00:00
ubuntu
ubuntu
GD library vulnerabilities
2009-11-05 00:00:00
amazon
amazon
Important: libwmf
2015-10-27 13:51:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2010-01-05 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

High

EPSS

0.018

Percentile

88.1%

JSON
Related for CVE-2009-3293
f52nvd2prion2ubuntucve2cvelist2openvas35freebsd3securityvulns3debiancve1cve1nessus20slackware1seebug1ubuntu1amazon1gentoo1