Lucene search

[email protected]NVD:CVE-2009-3857

HistoryNov 04, 2009 - 5:30 p.m.

CVE-2009-3857

2009-11-0417:30:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

High

EPSS

0.004

Percentile

72.7%

JSON

Buffer overflow in Softonic International SciTE 1.72 allows user-assisted remote attackers to cause a denial of service (application crash) via a Ruby (.rb) file containing a long string, which triggers the crash when a scroll bar is used.

Affected configurations

Nvd

Node

softonicsciteMatch1.72

VendorProductVersionCPE
softonicscite1.72cpe:2.3:a:softonic:scite:1.72:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
softonic	scite	1.72	cpe:2.3:a:softonic:scite:1.72:::::::*

References

www.exploit-db.com/exploits/9133

exchange.xforce.ibmcloud.com/vulnerabilities/51674

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

High

EPSS

0.004

Percentile

72.7%

JSON

Related for NVD:CVE-2009-3857

prion1 cve1 cvelist1 exploitdb1