cvelistv5 - cve-2009-2807

CVE-2009-2807 (GCVE-0-2009-2807)

Vulnerability from cvelistv5

Published

2009-09-14 16:00

Modified

2024-08-07 06:07

Severity ?

CWE

Summary

Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors.

References

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

fkie_cve-2009-2807

Vulnerability from fkie_nvd

Published

2009-09-14 16:30

Modified

2025-04-09 00:30

Severity ?

Summary

Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors.

References

URL	Tags
cve@mitre.org	http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html	Patch, Vendor Advisory
cve@mitre.org	http://osvdb.org/57951
cve@mitre.org	http://secunia.com/advisories/36701	Vendor Advisory
cve@mitre.org	http://support.apple.com/kb/HT3865	Patch, Vendor Advisory
cve@mitre.org	http://www.cups.org/articles.php?L588
cve@mitre.org	http://www.securityfocus.com/bid/36350	Patch
cve@mitre.org	http://www.securitytracker.com/id?1022898
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/53168
af854a3a-2127-422b-91ae-364da2661108	http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/57951
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/36701	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://support.apple.com/kb/HT3865	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.cups.org/articles.php?L588
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/36350	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1022898
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/53168

Impacted products

	Vendor	Product	Version
	apple	mac_os_x	10.5.8
	apple	mac_os_x_server	10.5.8

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "1335E35A-D381-4056-9E78-37BC6DF8AD98",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "82B4CD59-9F37-4EF0-BA43-427CFD6E1329",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer basado en memoria din\u00e1mica (heap) en el panel de gesti\u00f3n USB en CUPS en Apple Mac OS X, permite a usuarios locales obtener privilegios a trav\u00e9s de vectores no especificados."
    }
  ],
  "id": "CVE-2009-2807",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.2,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2009-09-14T16:30:00.343",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/57951"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/36701"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://support.apple.com/kb/HT3865"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.cups.org/articles.php?L588"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/36350"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1022898"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53168"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/57951"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/36701"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://support.apple.com/kb/HT3865"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.cups.org/articles.php?L588"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/36350"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1022898"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53168"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors. CUPS (Common UNIX Printing System) is prone to a local heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Exploiting this issue will allow local attackers to execute arbitrary code with superuser privileges and completely compromise affected computers. Failed exploit attempts will result in a denial-of-service condition. Local users can gain privileges with the help of unknown vectors. ----------------------------------------------------------------------

Do you have VARM strategy implemented?

(Vulnerability Assessment Remediation Management)

If not, then implement it through the most reliable vulnerability intelligence source on the market.

Implement it through Secunia.

For more information visit: http://secunia.com/advisories/business_solutions/

Alternatively request a call from a Secunia representative today to discuss how we can help you with our capabilities contact us at: sales@secunia.com

TITLE: Apple Mac OS X Security Update Fixes Multiple Vulnerabilities

SECUNIA ADVISORY ID: SA36701

VERIFY ADVISORY: http://secunia.com/advisories/36701/

DESCRIPTION: Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.

1) An error in Alias Manager when processing alias files can be exploited to cause a buffer overflow and potentially execute arbitrary code.

2) An error in Resource Manager when processing resource forks can be exploited to corrupt memory and potentially execute arbitrary code.

3) Multiple vulnerabilities in ClamAV can be exploited to bypass certain security restrictions, cause a DoS, and potentially compromise a vulnerable system.

For more information: SA34566 SA34612

4) An integer overflow error exists when processing ColorSync profiles embedded in images. This can be exploited to cause a heap-based buffer overflow and potentially execute arbitrary code via a specially crafted image.

5) An integer overflow error exists in CoreGraphics when processing JBIG2 streams embedded in PDF files. This can be exploited to cause a heap-based buffer overflow and potentially execute arbitrary code via a specially crafted PDF file.

6) An error in CoreGraphics can be exploited to cause a heap-based buffer overflow potentially execute arbitrary code when drawing long text strings.

This is related to vulnerability #1 in: SA36269

7) A NULL-pointer dereference error in CUPS can be exploited to cause a crash.

9) Multiple vulnerabilities in Adobe Flash Player can be exploited by malicious people to bypass security features, gain knowledge of sensitive information, or compromise a user's system.

For more information: SA35948

10) Multiple errors exist in ImageIO when processing PixarFilm encoded TIFF images. These can be exploited to trigger memory corruptions and potentially execute arbitrary code via specially crafted TIFF files.

11) An error exists in Launch Services when handling files having a ".fileloc" extension. This can be exploited to potentially execute arbitrary code by tricking a user into opening a ".fileloc" file.

12) An error exists in Launch Services when handling exported document types presented when an application is downloaded. This can be exploited to associate a safe file extension with an unsafe Uniform Type Identifier (UTI) and execute arbitrary code.

13) An error in MySQL can be exploited by malicious, local users to bypass certain security restrictions.

For more information: SA30134

14) Multiple vulnerabilities in PHP have an unknown impact or can potentially be exploited by malicious people to disclose sensitive information or cause a DoS (Denial of Service).

For more information: SA34081

15) An error exists in Samba when handling error conditions. This can be exploited by a user without a configured home directory to access the contents of the file system by connecting to the Windows File Sharing service.

16) Input passed in search requests containing non UTF-8 encoded data to Wiki Server is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

SOLUTION: Update to Mac OS X v10.6.1 or apply Security Update 2009-005.

Security Update 2009-005 (Tiger PPC): http://support.apple.com/downloads/DL931/en_US/SecUpd2009-005PPC.dmg

Security Update 2009-005 (Tiger Intel): http://support.apple.com/downloads/DL932/en_US/SecUpd2009-005Intel.dmg

Security Update 2009-005 Server (Tiger Univ): http://support.apple.com/downloads/DL933/en_US/SecUpdSrvr2009-005Univ.dmg

Security Update 2009-005 Server (Tiger PPC): http://support.apple.com/downloads/DL934/en_US/SecUpdSrvr2009-005PPC.dmg

Mac OS X Server v10.6.1 Update: http://support.apple.com/downloads/DL929/en_US/MacOSXServerUpd10.6.1.dmg

Security Update 2009-005 Server (Leopard): http://support.apple.com/downloads/DL936/en_US/SecUpdSrvr2009-005.dmg

Security Update 2009-005 (Leopard): http://support.apple.com/downloads/DL935/en_US/SecUpd2009-005.dmg

Mac OS X v10.6.1 Update: http://support.apple.com/downloads/DL930/en_US/MacOSXUpd10.6.1.dmg

PROVIDED AND/OR DISCOVERED BY: 1, 2, 4, 8, 10-12, 16) Reported by the vendor. 5) The vendor credits Will Dormann of CERT/CC. 6) The vendor credits Will Drewry of Google. 15) The vendor credits J. David Hester of LCG Systems National Institutes of Health.

ORIGINAL ADVISORY: http://support.apple.com/kb/HT3864 http://support.apple.com/kb/HT3865

OTHER REFERENCES: SA30134: http://secunia.com/advisories/30134/

SA34081: http://secunia.com/advisories/34081/

SA34481: http://secunia.com/advisories/34481/

SA34566: http://secunia.com/advisories/34566/

SA34612: http://secunia.com/advisories/34612/

SA35948: http://secunia.com/advisories/35948/

SA36269: http://secunia.com/advisories/36269/

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200909-0754",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "mac os x",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "apple",
        "version": "10.5.8"
      },
      {
        "model": "mac os x server",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "apple",
        "version": "10.5.8"
      },
      {
        "model": "cups",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cups",
        "version": "1.4.0"
      },
      {
        "model": "mac os x",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "apple",
        "version": "v10.5.8"
      },
      {
        "model": "mac os x server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "apple",
        "version": "v10.5.8"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.3.10"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.3.9"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.3.8"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.3.7"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.3.6"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.3.5"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.3.3"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.3.2"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.2.12"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.2.10"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.2.9"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.2.8"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.2.4"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.2.2"
      },
      {
        "model": "software products cups rc1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.23"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.23"
      },
      {
        "model": "software products cups rc1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.22"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.22"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.21"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.20"
      },
      {
        "model": "software products cups rc5",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.19"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.19"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.18"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.17"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.16"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.15"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.14"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.13"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.12"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.10"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.7"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.6"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.4-5"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.4-3"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.4-2"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.4"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.1.1"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.0.4-8"
      },
      {
        "model": "software products cups",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "easy",
        "version": "1.0.4"
      },
      {
        "model": "and nitro187 guild ftpd rc5",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "drphibez",
        "version": "1.1.19"
      },
      {
        "model": "mac os server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.8"
      },
      {
        "model": "mac os server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.7"
      },
      {
        "model": "mac os server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.6"
      },
      {
        "model": "mac os server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.5"
      },
      {
        "model": "mac os server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.4"
      },
      {
        "model": "mac os server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.3"
      },
      {
        "model": "mac os server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.2"
      },
      {
        "model": "mac os server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.1"
      },
      {
        "model": "mac os server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5"
      },
      {
        "model": "mac os",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.8"
      },
      {
        "model": "mac os",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.7"
      },
      {
        "model": "mac os",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.6"
      },
      {
        "model": "mac os",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.5"
      },
      {
        "model": "mac os",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.4"
      },
      {
        "model": "mac os",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.3"
      },
      {
        "model": "mac os",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.2"
      },
      {
        "model": "mac os",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5.1"
      },
      {
        "model": "mac os",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "x10.5"
      }
    ],
    "sources": [
      {
        "db": "BID",
        "id": "36350"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-2807"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/a:cups:cups",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/o:apple:mac_os_x",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/o:apple:mac_os_x_server",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Reported in Apple Security Update 2009-005",
    "sources": [
      {
        "db": "BID",
        "id": "36350"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      }
    ],
    "trust": 0.9
  },
  "cve": "CVE-2009-2807",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.2,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 3.9,
            "id": "CVE-2009-2807",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 1.8,
            "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.2,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 3.9,
            "id": "VHN-40253",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:L/AC:L/AU:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2009-2807",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "NVD",
            "id": "CVE-2009-2807",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200909-277",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-40253",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-40253"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-2807"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors. CUPS (Common UNIX Printing System) is prone to a local heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. \nExploiting this issue will allow local attackers to execute arbitrary code with superuser privileges and completely compromise affected computers. Failed exploit attempts will result in a denial-of-service condition. Local users can gain privileges with the help of unknown vectors. ----------------------------------------------------------------------\n\nDo you have VARM strategy implemented?\n\n(Vulnerability Assessment Remediation Management)  \n\nIf not, then implement it through the most reliable vulnerability\nintelligence source on the market. \n\nImplement it through Secunia. \n\nFor more information visit:\nhttp://secunia.com/advisories/business_solutions/\n\nAlternatively request a call from a Secunia representative today to\ndiscuss how we can help you with our capabilities contact us at:\nsales@secunia.com\n\n----------------------------------------------------------------------\n\nTITLE:\nApple Mac OS X Security Update Fixes Multiple Vulnerabilities\n\nSECUNIA ADVISORY ID:\nSA36701\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/36701/\n\nDESCRIPTION:\nApple has issued a security update for Mac OS X, which fixes multiple\nvulnerabilities. \n\n1) An error in Alias Manager when processing alias files can be\nexploited to cause a buffer overflow and potentially execute\narbitrary code. \n\n2) An error in Resource Manager when processing resource forks can be\nexploited to corrupt memory and potentially execute arbitrary code. \n\n3) Multiple vulnerabilities in ClamAV can be exploited to bypass\ncertain security restrictions, cause a DoS, and potentially\ncompromise a vulnerable system. \n\nFor more information:\nSA34566\nSA34612\n\n4) An integer overflow error exists when processing ColorSync\nprofiles embedded in images. This can be exploited to cause a\nheap-based buffer overflow and potentially execute arbitrary code via\na specially crafted image. \n\n5) An integer overflow error exists in CoreGraphics when processing\nJBIG2 streams embedded in PDF files. This can be exploited to cause a\nheap-based buffer overflow and potentially execute arbitrary code via\na specially crafted PDF file. \n\n6) An error in CoreGraphics can be exploited to cause a heap-based\nbuffer overflow potentially execute arbitrary code when drawing long\ntext strings. \n\nThis is related to vulnerability #1 in:\nSA36269\n\n7) A NULL-pointer dereference error in CUPS can be exploited to cause\na crash. \n\n9) Multiple vulnerabilities in Adobe Flash Player can be exploited by\nmalicious people to bypass security features, gain knowledge of\nsensitive information, or compromise a user\u0027s system. \n\nFor more information:\nSA35948\n\n10) Multiple errors exist in ImageIO when processing PixarFilm\nencoded TIFF images. These can be exploited to trigger memory\ncorruptions and potentially execute arbitrary code via specially\ncrafted TIFF files. \n\n11) An error exists in Launch Services when handling files having a\n\".fileloc\" extension. This can be exploited to potentially execute\narbitrary code by tricking a user into opening a \".fileloc\" file. \n\n12) An error exists in Launch Services when handling exported\ndocument types presented when an application is downloaded. This can\nbe exploited to associate a safe file extension with an unsafe\nUniform Type Identifier (UTI) and execute arbitrary code. \n\n13) An error in MySQL can be exploited by malicious, local users to\nbypass certain security restrictions. \n\nFor more information:\nSA30134\n\n14) Multiple vulnerabilities in PHP have an unknown impact or can\npotentially be exploited by malicious people to disclose sensitive\ninformation or cause a DoS (Denial of Service). \n\nFor more information:\nSA34081\n\n15) An error exists in Samba when handling error conditions. This can\nbe exploited by a user without a configured home directory to access\nthe contents of the file system by connecting to the Windows File\nSharing service. \n\n16) Input passed in search requests containing non UTF-8 encoded data\nto Wiki Server is not properly sanitised before being returned to the\nuser. This can be exploited to execute arbitrary HTML and script code\nin a user\u0027s browser session in context of an affected site. \n\nSOLUTION:\nUpdate to Mac OS X v10.6.1 or apply Security Update 2009-005. \n\nSecurity Update 2009-005 (Tiger PPC):\nhttp://support.apple.com/downloads/DL931/en_US/SecUpd2009-005PPC.dmg\n\nSecurity Update 2009-005 (Tiger Intel):\nhttp://support.apple.com/downloads/DL932/en_US/SecUpd2009-005Intel.dmg\n\nSecurity Update 2009-005 Server (Tiger Univ):\nhttp://support.apple.com/downloads/DL933/en_US/SecUpdSrvr2009-005Univ.dmg\n\nSecurity Update 2009-005 Server (Tiger PPC):\nhttp://support.apple.com/downloads/DL934/en_US/SecUpdSrvr2009-005PPC.dmg\n\nMac OS X Server v10.6.1 Update:\nhttp://support.apple.com/downloads/DL929/en_US/MacOSXServerUpd10.6.1.dmg\n\nSecurity Update 2009-005 Server (Leopard):\nhttp://support.apple.com/downloads/DL936/en_US/SecUpdSrvr2009-005.dmg\n\nSecurity Update 2009-005 (Leopard):\nhttp://support.apple.com/downloads/DL935/en_US/SecUpd2009-005.dmg\n\nMac OS X v10.6.1 Update:\nhttp://support.apple.com/downloads/DL930/en_US/MacOSXUpd10.6.1.dmg\n\nPROVIDED AND/OR DISCOVERED BY:\n1, 2, 4, 8, 10-12, 16) Reported by the vendor. \n5) The vendor credits Will Dormann of CERT/CC. \n6) The vendor credits Will Drewry of Google. \n15) The vendor credits J. David Hester of LCG Systems National\nInstitutes of Health. \n\nORIGINAL ADVISORY:\nhttp://support.apple.com/kb/HT3864\nhttp://support.apple.com/kb/HT3865\n\nOTHER REFERENCES:\nSA30134:\nhttp://secunia.com/advisories/30134/\n\nSA34081:\nhttp://secunia.com/advisories/34081/\n\nSA34481:\nhttp://secunia.com/advisories/34481/\n\nSA34566:\nhttp://secunia.com/advisories/34566/\n\nSA34612:\nhttp://secunia.com/advisories/34612/\n\nSA35948:\nhttp://secunia.com/advisories/35948/\n\nSA36269:\nhttp://secunia.com/advisories/36269/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2009-2807"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      },
      {
        "db": "BID",
        "id": "36350"
      },
      {
        "db": "VULHUB",
        "id": "VHN-40253"
      },
      {
        "db": "PACKETSTORM",
        "id": "81208"
      }
    ],
    "trust": 2.07
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "BID",
        "id": "36350",
        "trust": 2.8
      },
      {
        "db": "NVD",
        "id": "CVE-2009-2807",
        "trust": 2.8
      },
      {
        "db": "SECUNIA",
        "id": "36701",
        "trust": 2.6
      },
      {
        "db": "SECTRACK",
        "id": "1022898",
        "trust": 1.1
      },
      {
        "db": "OSVDB",
        "id": "57951",
        "trust": 1.1
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2009-002134",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200909-277",
        "trust": 0.7
      },
      {
        "db": "APPLE",
        "id": "APPLE-SA-2009-09-10-2",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-40253",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "81208",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-40253"
      },
      {
        "db": "BID",
        "id": "36350"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      },
      {
        "db": "PACKETSTORM",
        "id": "81208"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-2807"
      }
    ]
  },
  "id": "VAR-200909-0754",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-40253"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-11-23T20:47:34.916000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "HT3865",
        "trust": 0.8,
        "url": "http://support.apple.com/kb/HT3865"
      },
      {
        "title": "HT3865",
        "trust": 0.8,
        "url": "http://support.apple.com/kb/HT3865?viewlocale=ja_JP"
      },
      {
        "title": "L588",
        "trust": 0.8,
        "url": "http://www.cups.org/articles.php?L588"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-119",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-40253"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-2807"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.5,
        "url": "http://www.securityfocus.com/bid/36350"
      },
      {
        "trust": 2.5,
        "url": "http://secunia.com/advisories/36701"
      },
      {
        "trust": 1.8,
        "url": "http://support.apple.com/kb/ht3865"
      },
      {
        "trust": 1.7,
        "url": "http://lists.apple.com/archives/security-announce/2009/sep/msg00004.html"
      },
      {
        "trust": 1.7,
        "url": "http://www.cups.org/articles.php?l588"
      },
      {
        "trust": 1.1,
        "url": "http://osvdb.org/57951"
      },
      {
        "trust": 1.1,
        "url": "http://www.securitytracker.com/id?1022898"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53168"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2807"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2009-2807"
      },
      {
        "trust": 0.3,
        "url": "http://www.cups.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/35948/"
      },
      {
        "trust": 0.1,
        "url": "http://support.apple.com/downloads/dl936/en_us/secupdsrvr2009-005.dmg"
      },
      {
        "trust": 0.1,
        "url": "http://support.apple.com/downloads/dl933/en_us/secupdsrvr2009-005univ.dmg"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/34481/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/about_secunia_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://support.apple.com/downloads/dl932/en_us/secupd2009-005intel.dmg"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/36269/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/business_solutions/"
      },
      {
        "trust": 0.1,
        "url": "http://support.apple.com/kb/ht3864"
      },
      {
        "trust": 0.1,
        "url": "http://support.apple.com/downloads/dl930/en_us/macosxupd10.6.1.dmg"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/34566/"
      },
      {
        "trust": 0.1,
        "url": "http://support.apple.com/downloads/dl935/en_us/secupd2009-005.dmg"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/36701/"
      },
      {
        "trust": 0.1,
        "url": "http://support.apple.com/downloads/dl934/en_us/secupdsrvr2009-005ppc.dmg"
      },
      {
        "trust": 0.1,
        "url": "http://support.apple.com/downloads/dl931/en_us/secupd2009-005ppc.dmg"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/34081/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/34612/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/30134/"
      },
      {
        "trust": 0.1,
        "url": "http://support.apple.com/downloads/dl929/en_us/macosxserverupd10.6.1.dmg"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-40253"
      },
      {
        "db": "BID",
        "id": "36350"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      },
      {
        "db": "PACKETSTORM",
        "id": "81208"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-2807"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-40253"
      },
      {
        "db": "BID",
        "id": "36350"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      },
      {
        "db": "PACKETSTORM",
        "id": "81208"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-2807"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2009-09-14T00:00:00",
        "db": "VULHUB",
        "id": "VHN-40253"
      },
      {
        "date": "2009-09-10T00:00:00",
        "db": "BID",
        "id": "36350"
      },
      {
        "date": "2009-10-23T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      },
      {
        "date": "2009-09-11T14:30:33",
        "db": "PACKETSTORM",
        "id": "81208"
      },
      {
        "date": "2009-09-14T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      },
      {
        "date": "2009-09-14T16:30:00.343000",
        "db": "NVD",
        "id": "CVE-2009-2807"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-08-17T00:00:00",
        "db": "VULHUB",
        "id": "VHN-40253"
      },
      {
        "date": "2009-09-14T19:41:00",
        "db": "BID",
        "id": "36350"
      },
      {
        "date": "2009-10-23T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2009-002134"
      },
      {
        "date": "2009-09-15T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      },
      {
        "date": "2024-11-21T01:05:46.917000",
        "db": "NVD",
        "id": "CVE-2009-2807"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "local",
    "sources": [
      {
        "db": "BID",
        "id": "36350"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      }
    ],
    "trust": 0.9
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "CUPS USB backend Local Heap Based Buffer Overflow Vulnerability",
    "sources": [
      {
        "db": "BID",
        "id": "36350"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      }
    ],
    "trust": 0.9
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "buffer overflow",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200909-277"
      }
    ],
    "trust": 0.6
  }
}

ghsa-9vjx-w5p4-4vg6

Vulnerability from github

Published

2022-05-02 03:38

Modified

2022-05-02 03:38

Details

Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2009-2807"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2009-09-14T16:30:00Z",
    "severity": "HIGH"
  },
  "details": "Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors.",
  "id": "GHSA-9vjx-w5p4-4vg6",
  "modified": "2022-05-02T03:38:50Z",
  "published": "2022-05-02T03:38:50Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2807"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53168"
    },
    {
      "type": "WEB",
      "url": "http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/57951"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/36701"
    },
    {
      "type": "WEB",
      "url": "http://support.apple.com/kb/HT3865"
    },
    {
      "type": "WEB",
      "url": "http://www.cups.org/articles.php?L588"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/36350"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1022898"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

gsd-2009-2807

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors.

Aliases

CVE-2009-2807

Aliases

CVE-2009-2807

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2009-2807",
    "description": "Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors.",
    "id": "GSD-2009-2807"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2009-2807"
      ],
      "details": "Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors.",
      "id": "GSD-2009-2807",
      "modified": "2023-12-13T01:19:46.186564Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2009-2807",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "36350",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/36350"
          },
          {
            "name": "http://www.cups.org/articles.php?L588",
            "refsource": "MISC",
            "url": "http://www.cups.org/articles.php?L588"
          },
          {
            "name": "57951",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/57951"
          },
          {
            "name": "macosx-cupsusb-bo(53168)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53168"
          },
          {
            "name": "APPLE-SA-2009-09-10-2",
            "refsource": "APPLE",
            "url": "http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html"
          },
          {
            "name": "1022898",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1022898"
          },
          {
            "name": "http://support.apple.com/kb/HT3865",
            "refsource": "CONFIRM",
            "url": "http://support.apple.com/kb/HT3865"
          },
          {
            "name": "36701",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/36701"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-2807"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "36350",
              "refsource": "BID",
              "tags": [
                "Patch"
              ],
              "url": "http://www.securityfocus.com/bid/36350"
            },
            {
              "name": "APPLE-SA-2009-09-10-2",
              "refsource": "APPLE",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html"
            },
            {
              "name": "http://www.cups.org/articles.php?L588",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.cups.org/articles.php?L588"
            },
            {
              "name": "36701",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/36701"
            },
            {
              "name": "http://support.apple.com/kb/HT3865",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://support.apple.com/kb/HT3865"
            },
            {
              "name": "57951",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/57951"
            },
            {
              "name": "1022898",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1022898"
            },
            {
              "name": "macosx-cupsusb-bo(53168)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53168"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 10.0,
          "obtainAllPrivilege": true,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-08-17T01:30Z",
      "publishedDate": "2009-09-14T16:30Z"
    }
  }
}

CERTA-2009-AVI-382

Vulnerability from certfr_avis

De multiples vulnérabilités permettant entre autres l'exécution de code arbitraire à distance ont été corrigées dans MacOS X.

Description

Plusieurs vulnérabilités d'applications contenues dans MacOS X ont été corrigées. MacOS X 10.6 n'est concerné que par les failles affectant le plugin Flash Player. Les vulnérabilités permettent notamment l'exécution de code arbitraire à distance, l'élévation de privilèges et l'injection de code indirecte.

Solution

Se référer aux bulletins de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Apple	macOS	MacOS X Server 10.4.x (Universal) ;
Apple	macOS	MacOS X 10.5.8 ;
Apple	macOS	MacOS X 10.4.11 ;
Apple	macOS	MacOS X 10.6.
Apple	macOS	MacOS X Server 10.5 ;
Apple	macOS	MacOS X Server 10.4.x (PowerPC) ;

References

Title

Publication Time

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2009-2807 (GCVE-0-2009-2807)

Vulnerability from cvelistv5

fkie_cve-2009-2807

Vulnerability from fkie_nvd

var-200909-0754

Vulnerability from variot

ghsa-9vjx-w5p4-4vg6

Vulnerability from github

gsd-2009-2807

Vulnerability from gsd

CERTA-2009-AVI-382

Vulnerability from certfr_avis

Description

Solution

Tags

Sightings

Nomenclature