| Max CVSS | 10.0 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-4989 | 4.3 |
The _gnutls_x509_verify_certificate function in lib/x509/verify.c in libgnutls in GnuTLS before 2.6.1 trusts certificate chains in which the last certificate is an arbitrary trusted, self-signed certificate, which allows man-in-the-middle attackers t
|
09-02-2024 - 03:19 | 13-11-2008 - 01:00 | |
| CVE-2009-0586 | 7.5 |
Integer overflow in the gst_vorbis_tag_add_coverart function (gst-libs/gst/tag/gstvorbistag.c) in vorbistag in gst-plugins-base (aka gstreamer-plugins-base) before 0.10.23 in GStreamer allows context-dependent attackers to execute arbitrary code via
|
13-02-2023 - 02:19 | 14-03-2009 - 18:30 | |
| CVE-2009-0792 | 9.3 |
Multiple integer overflows in icc.c in the International Color Consortium (ICC) Format library (aka icclib), as used in Ghostscript 8.64 and earlier and Argyll Color Management System (CMS) 1.0.3 and earlier, allow context-dependent attackers to caus
|
13-02-2023 - 01:17 | 14-04-2009 - 16:26 | |
| CVE-2009-1171 | 4.3 |
The TeX filter in Moodle 1.6 before 1.6.9+, 1.7 before 1.7.7+, 1.8 before 1.8.9, and 1.9 before 1.9.5 allows user-assisted attackers to read arbitrary files via an input command in a "$$" sequence, which causes LaTeX to include the contents of the fi
|
01-12-2020 - 14:43 | 30-03-2009 - 22:30 | |
| CVE-2009-1241 | 7.5 |
Unspecified vulnerability in ClamAV before 0.95 allows remote attackers to bypass detection of malware via a modified RAR archive.
|
10-11-2020 - 18:34 | 03-04-2009 - 18:30 | |
| CVE-2009-0658 | 9.3 |
Buffer overflow in Adobe Reader 9.0 and earlier, and Acrobat 9.0 and earlier, allows remote attackers to execute arbitrary code via a crafted PDF document, related to a non-JavaScript function call and possibly an embedded JBIG2 image stream, as expl
|
27-09-2019 - 16:48 | 20-02-2009 - 19:30 | |
| CVE-2009-0790 | 5.0 |
The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service (daemon crash and restart) via a crafted (1) R_
|
29-07-2019 - 14:24 | 01-04-2009 - 10:30 | |
| CVE-2009-1061 | 9.3 |
Unspecified vulnerability in Adobe Acrobat Reader 9 before 9.1, 8 before 8.1.4, and 7 before 7.1.1 might allow remote attackers to execute arbitrary code via unknown attack vectors related to JBIG2 and "input validation," a different vulnerability th
|
08-11-2018 - 20:28 | 25-03-2009 - 01:30 | |
| CVE-2009-0193 | 9.3 |
Heap-based buffer overflow in Adobe Acrobat Reader 9 before 9.1, 8 before 8.1.4, and 7 before 7.1.1 allows remote attackers to execute arbitrary code via a PDF file with a malformed JBIG2 symbol dictionary segment, a different vulnerability than CVE-
|
08-11-2018 - 20:27 | 25-03-2009 - 01:30 | |
| CVE-2009-0927 | 9.3 |
Stack-based buffer overflow in Adobe Reader and Adobe Acrobat 9 before 9.1, 8 before 8.1.3 , and 7 before 7.1.1 allows remote attackers to execute arbitrary code via a crafted argument to the getIcon method of a Collab object, a different vulnerabili
|
08-11-2018 - 20:25 | 19-03-2009 - 10:30 | |
| CVE-2009-0928 | 10.0 |
Heap-based buffer overflow in Adobe Acrobat Reader and Acrobat Professional 7.1.0, 8.1.3, 9.0.0, and other versions allows remote attackers to execute arbitrary code via a PDF file containing a JBIG2 stream with a size inconsistency related to an uns
|
30-10-2018 - 16:25 | 25-03-2009 - 01:30 | |
| CVE-2009-1062 | 9.3 |
Adobe Acrobat Reader 9 before 9.1, 8 before 8.1.4, and 7 before 7.1.1 might allow remote attackers to trigger memory corruption and possibly execute arbitrary code via unknown attack vectors related to JBIG2, a different vulnerability than CVE-2009-0
|
30-10-2018 - 16:25 | 25-03-2009 - 01:30 | |
| CVE-2009-0196 | 9.3 |
Heap-based buffer overflow in the big2_decode_symbol_dict function (jbig2_symbol_dict.c) in the JBIG2 decoding library (jbig2dec) in Ghostscript 8.64, and probably earlier versions, allows remote attackers to execute arbitrary code via a PDF file wit
|
11-10-2018 - 21:00 | 16-04-2009 - 15:12 | |
| CVE-2009-0922 | 4.0 |
PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows remote authenticated users to cause a denial of service (stack consumption and crash) by triggering a failure in the conversion of a localized error message to a client-specified enco
|
10-10-2018 - 19:32 | 17-03-2009 - 17:30 | |
| CVE-2009-0698 | 7.5 |
Integer overflow in the 4xm demuxer (demuxers/demux_4xm.c) in xine-lib 1.1.16.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a 4X movie file with a large current_track value, a similar issue to
|
10-10-2018 - 19:30 | 23-02-2009 - 15:30 | |
| CVE-2009-0365 | 4.6 |
nm-applet.conf in GNOME NetworkManager before 0.7.0.99 contains an incorrect deny setting, which allows local users to discover (1) network connection passwords and (2) pre-shared keys via calls to the GetSecrets method in the dbus request handler.
|
29-09-2017 - 01:33 | 05-03-2009 - 02:30 | |
| CVE-2009-0578 | 6.2 |
GNOME NetworkManager before 0.7.0.99 does not properly verify privileges for dbus (1) modify and (2) delete requests, which allows local users to change or remove the network connections of arbitrary users via unspecified vectors related to org.freed
|
29-09-2017 - 01:33 | 05-03-2009 - 02:30 | |
| CVE-2008-4311 | 4.6 |
The default configuration of system.conf in D-Bus (aka DBus) before 1.2.6 omits the send_type attribute in certain rules, which allows local users to bypass intended access restrictions by (1) sending messages, related to send_requested_reply; and po
|
08-08-2017 - 01:32 | 10-12-2008 - 00:30 |