CVE-2009-2950
- EPSS 13.41%
- Veröffentlicht 16.02.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:10:33
Heap-based buffer overflow in the GIFLZWDecompressor::GIFLZWDecompressor function in filter.vcl/lgif/decode.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary ...
CVE-2009-3301
- EPSS 12.09%
- Veröffentlicht 16.02.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:11:20
Integer underflow in filter/ww8/ww8par2.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted sprmTDefTable table property modifier in a Word d...
CVE-2009-3302
- EPSS 11.73%
- Veröffentlicht 16.02.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:11:20
filter/ww8/ww8par2.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted sprmTSetBrc table property modifier in a Word document, related to a "...
CVE-2010-0136
- EPSS 8.13%
- Veröffentlicht 16.02.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:32
OpenOffice.org (OOo) 2.0.4, 2.4.1, and 3.1.1 does not properly enforce Visual Basic for Applications (VBA) macro security settings, which allows remote attackers to run arbitrary macros via a crafted document.
CVE-2010-0623
- EPSS 0.4%
- Veröffentlicht 15.02.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:31
The futex_lock_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly manage a certain reference count, which allows local users to cause a denial of service (OOPS) via vectors involving an unmount of an ext3 filesystem...
CVE-2009-4013
- EPSS 5.68%
- Veröffentlicht 02.02.2010 16:30:02
- Zuletzt bearbeitet 16.06.2026 23:12:49
Multiple directory traversal vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allow remote attackers to overwrite arbitrary files or obtain sensitive information via vectors involving (1) control field ...
CVE-2009-4484
- EPSS 69.55%
- Veröffentlicht 30.12.2009 21:30:00
- Zuletzt bearbeitet 16.06.2026 23:13:45
Multiple stack-based buffer overflows in the CertDecoder::GetName function in src/asn.cpp in TaoCrypt in yaSSL before 1.9.9, as used in mysqld in MySQL 5.0.x before 5.0.90, MySQL 5.1.x before 5.1.43, MySQL 5.5.x through 5.5.0-m2, and other products, ...
CVE-2009-4135
- EPSS 0.38%
- Veröffentlicht 11.12.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:13:06
The distcheck rule in dist-check.mk in GNU coreutils 5.2.1 through 8.1 allows local users to gain privileges via a symlink attack on a file in a directory tree under /tmp.
CVE-2009-3080
- EPSS 0.42%
- Veröffentlicht 20.11.2009 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:10:53
Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request.
CVE-2009-3553
- EPSS 3.91%
- Veröffentlicht 20.11.2009 02:30:00
- Zuletzt bearbeitet 16.06.2026 23:11:49
Use-after-free vulnerability in the abstract file-descriptor handling interface in the cupsdDoSelect function in scheduler/select.c in the scheduler in cupsd in CUPS 1.3.7 and 1.3.10 allows remote attackers to cause a denial of service (daemon crash ...