Lucene search

[email protected]CVE-2009-4846

HistoryMay 07, 2010 - 6:30 p.m.

CVE-2009-4846

2010-05-0718:30:01

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-4846

deliantra server

buffer overflow

remote code execution

nvd

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.277 Low

EPSS

Percentile

96.8%

JSON

Multiple buffer overflows in Deliantra Server before 2.82 allow remote attackers to execute arbitrary code via vectors related to (1) the command_gsay function in server/c_party.C and (2) the book implementation.

Affected configurations

NVD

Node

deliantradeliantraRange≤2.81

deliantradeliantraMatch0.99

deliantradeliantraMatch0.9955

deliantradeliantraMatch0.9956

deliantradeliantraMatch0.9959

deliantradeliantraMatch0.9960

deliantradeliantraMatch0.9963

deliantradeliantraMatch0.9965

deliantradeliantraMatch0.9967

deliantradeliantraMatch0.9970

deliantradeliantraMatch0.9972

deliantradeliantraMatch0.9974

deliantradeliantraMatch0.9975

deliantradeliantraMatch0.9976

deliantradeliantraMatch0.9977

deliantradeliantraMatch0.9978

deliantradeliantraMatch2.0

deliantradeliantraMatch2.1

deliantradeliantraMatch2.01

deliantradeliantraMatch2.02

deliantradeliantraMatch2.2

deliantradeliantraMatch2.3

deliantradeliantraMatch2.03

deliantradeliantraMatch2.4

deliantradeliantraMatch2.5

deliantradeliantraMatch2.6

deliantradeliantraMatch2.7

deliantradeliantraMatch2.31

deliantradeliantraMatch2.32

deliantradeliantraMatch2.41

deliantradeliantraMatch2.42

deliantradeliantraMatch2.43

deliantradeliantraMatch2.51

deliantradeliantraMatch2.52

deliantradeliantraMatch2.53

deliantradeliantraMatch2.54

deliantradeliantraMatch2.55

deliantradeliantraMatch2.56

deliantradeliantraMatch2.61

deliantradeliantraMatch2.71

deliantradeliantraMatch2.72

deliantradeliantraMatch2.73

deliantradeliantraMatch2.74

deliantradeliantraMatch2.75

deliantradeliantraMatch2.76

deliantradeliantraMatch2.77

deliantradeliantraMatch2.78

deliantradeliantraMatch2.79

deliantradeliantraMatch2.80

CPENameOperatorVersion
deliantra:deliantradeliantrale2.81
deliantra:deliantradeliantraeq0.99
deliantra:deliantradeliantraeq0.9955
deliantra:deliantradeliantraeq0.9956
deliantra:deliantradeliantraeq0.9959
deliantra:deliantradeliantraeq0.9960
deliantra:deliantradeliantraeq0.9963
deliantra:deliantradeliantraeq0.9965
deliantra:deliantradeliantraeq0.9967
deliantra:deliantradeliantraeq0.9970

CPE	Name	Operator	Version
deliantra:deliantra	deliantra	le	2.81
deliantra:deliantra	deliantra	eq	0.99
deliantra:deliantra	deliantra	eq	0.9955
deliantra:deliantra	deliantra	eq	0.9956
deliantra:deliantra	deliantra	eq	0.9959
deliantra:deliantra	deliantra	eq	0.9960
deliantra:deliantra	deliantra	eq	0.9963
deliantra:deliantra	deliantra	eq	0.9965
deliantra:deliantra	deliantra	eq	0.9967
deliantra:deliantra	deliantra	eq	0.9970

Rows per page:

1-10 of 491

References

cvs.schmorp.de/deliantra/server/Changes?pathrev=rel-2_82

cvs.schmorp.de/deliantra/server/server/c_party.C?r1=1.29&r2=1.30

secunia.com/advisories/37317

www.osvdb.org/59878

www.osvdb.org/59879

www.vupen.com/english/advisories/2009/3176

exchange.xforce.ibmcloud.com/vulnerabilities/54205

exchange.xforce.ibmcloud.com/vulnerabilities/54206

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.277 Low

EPSS

Percentile

96.8%

JSON

Related for CVE-2009-4846

cvelist1 nvd1 prion1