Lucene search

[email protected]CVE-2009-3575

HistoryOct 07, 2009 - 5:30 p.m.

CVE-2009-3575

2009-10-0717:30:00

[email protected]

web.nvd.nist.gov

aria2

buffer overflow

denial of service

remote attack

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.069 Low

EPSS

Percentile

93.9%

JSON

Buffer overflow in DHTRoutingTableDeserializer.cc in aria2 0.15.3, 1.2.0, and other versions allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors.

Affected configurations

NVD

Node

tatsuhiro_tsujikawaaria2Match0.15.3

tatsuhiro_tsujikawaaria2Match1.2.0

CPENameOperatorVersion
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq0.15.3
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq1.2.0

CPE	Name	Operator	Version
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	0.15.3
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	1.2.0

References

secunia.com/advisories/37971

www.debian.org/security/2009/dsa-1957

www.mandriva.com/security/advisories?name=MDVSA-2009:226

www.securityfocus.com/bid/36332

qa.mandriva.com/show_bug.cgi?id=52840

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.069 Low

EPSS

Percentile

93.9%

JSON

Related for CVE-2009-3575

nessus5 openvas8 nvd1 debiancve1 fedora1 ubuntucve1 prion1 debian1 securityvulns1 osv1 cvelist1 gentoo1