Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2009-0793
HistoryApr 09, 2009 - 3:08 p.m.

CVE-2009-0793

2009-04-0915:08:35
CWE-20
[email protected]
web.nvd.nist.gov
6

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

Low

EPSS

0.05

Percentile

93.0%

JSON

cmsxform.c in LittleCMS (aka lcms or liblcms) 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted image that triggers execution of incorrect code for “transformations of monochrome profiles.”

Affected configurations

Nvd
Node
littlecmslcmsMatch1.18
OR
sunopenjdkMatch6
VendorProductVersionCPE
littlecmslcms1.18cpe:2.3:a:littlecms:lcms:1.18:*:*:*:*:*:*:*
sunopenjdk6cpe:2.3:a:sun:openjdk:6:*:*:*:*:*:*:*

References

Related

nessus 15
veracode 1
prion 1
cve 1
openvas 29
cvelist 1
ubuntu 1
ubuntucve 1
fedora 4
osv 2
securityvulns 3
gentoo 1
debian 1
centos 1
oraclelinux 1
redhat 1
nessus
nessus
Fedora 9 : lcms-1.18-2.fc9 (2009-3914)
2009-05-11 00:00:00
Ubuntu 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : lcms vulnerability (USN-1043-1)
2011-01-13 00:00:00
Fedora 10 : lcms-1.18-2.fc10 (2009-3967)
2009-05-11 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:30:32
prion
prion
Null pointer dereference
2009-04-09 15:08:00
cve
cve
CVE-2009-0793
2009-04-09 15:08:35
openvas
openvas
Ubuntu Update for lcms vulnerability USN-1043-1
2011-01-14 00:00:00
Ubuntu: Security Advisory (USN-1043-1)
2011-01-14 00:00:00
Fedora Core 10 FEDORA-2009-3426 (java-1.6.0-openjdk)
2009-04-15 00:00:00
cvelist
cvelist
CVE-2009-0793
2009-04-09 15:00:00
ubuntu
ubuntu
Little CMS vulnerability
2011-01-12 00:00:00
ubuntucve
ubuntucve
CVE-2009-0793
2009-04-09 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: java-1.6.0-openjdk-1.6.0.0-15.b14.fc10
2009-04-07 23:23:37
[SECURITY] Fedora 9 Update: java-1.6.0-openjdk-1.6.0.0-0.25.b09.fc9
2009-04-07 23:23:21
[SECURITY] Fedora 9 Update: lcms-1.18-2.fc9
2009-05-09 03:57:49
osv
osv
lcms-1.19-19.8 on GA media
2024-06-15 00:00:00
openjdk-6 - arbitrary code execution
2009-04-11 00:00:00
securityvulns
securityvulns
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2009-04-20 00:00:00
lcms multiple security vulnerabilities
2009-05-25 00:00:00
[ GLSA 200904-19 ] LittleCMS: Multiple vulnerabilities
2009-04-20 00:00:00
gentoo
gentoo
LittleCMS: Multiple vulnerabilities
2009-04-19 00:00:00
debian
debian
[SECURITY] [DSA 1769-1] New openjdk-6 packages fix arbitrary code execution
2009-04-11 14:38:24
centos
centos
java security update
2009-04-08 11:56:07
oraclelinux
oraclelinux
java-1.6.0-openjdk security update
2009-04-07 00:00:00
redhat
redhat
(RHSA-2009:0377) Important: java-1.6.0-openjdk security update
2009-04-07 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

Low

EPSS

0.05

Percentile

93.0%

JSON
Related for NVD:CVE-2009-0793
nessus15veracode1prion1cve1openvas29cvelist1ubuntu1ubuntucve1fedora4osv2securityvulns3gentoo1debian1centos1oraclelinux1redhat1