CVE-2009-2459 - Multiple unspecified vulnerabilities in mimeTeX, when downloaded before 20090713, have unknown impac

CVE-2009-2459

Summary

Multiple unspecified vulnerabilities in mimeTeX, when downloaded before 20090713, have unknown impact and attack vectors related to the (1) \environ, (2) \input, and (3) \counter TeX directives.

References

http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039314.html
http://scary.beasts.org/security/CESA-2009-009.html
http://secunia.com/advisories/35752
http://www.vupen.com/english/advisories/2009/1875
http://www.vupen.com/english/advisories/2010/0877

Vulnerable Configurations

cpe:2.3:a:forkosh:mimetex:*:*:*:*:*:*:*:*
cpe:2.3:a:forkosh:mimetex:*:*:*:*:*:*:*:*

CVSS

Base:	10.0 (as of 20-04-2010 - 05:39)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

fedora	FEDORA-2010-6546
misc	http://scary.beasts.org/security/CESA-2009-009.html
secunia	35752
vupen	ADV-2009-1875 ADV-2010-0877

Last major update

20-04-2010 - 05:39

Published

14-07-2009 - 20:30

Last modified

20-04-2010 - 05:39