6.8 - CVE-2009-0689

Executive Summary

Informations
Name	CVE-2009-0689	First vendor Publication	2009-07-01
Vendor	Cve	Last vendor Modification	2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score	6.8	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0689

CAPEC : Common Attack Pattern Enumeration & Classification

Id	Name
CAPEC-8	Buffer Overflow in an API Call
CAPEC-9	Buffer Overflow in Local Command-Line Utilities
CAPEC-10	Buffer Overflow via Environment Variables
CAPEC-14	Client-side Injection-induced Buffer Overflow
CAPEC-24	Filter Failure through Buffer Overflow
CAPEC-42	MIME Conversion
CAPEC-44	Overflow Binary Resource File
CAPEC-45	Buffer Overflow via Symbolic Links
CAPEC-46	Overflow Variables and Tags
CAPEC-47	Buffer Overflow via Parameter Expansion
CAPEC-100	Overflow Buffers

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:12913

Oval ID:	oval:org.mitre.oval:def:12913
Title:	DSA-1998-1 kdelibs -- buffer overflow
Description:	Maksymilian Arciemowicz discovered a buffer overflow in the internal string routines of the KDE core libraries, which could lead to the execution of arbitrary code. For the stable distribution, this problem has been fixed in version 4:3.5.10.dfsg.1-0lenny4. For the unstable distribution, this problem has been fixed in version 4:3.5.10.dfsg.1-3. We recommend that you upgrade your kdelibs packages.
Family:	unix	Class:	patch
Reference(s):	DSA-1998-1 CVE-2009-0689	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	kdelibs
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independet section Installed architecture is all AND Packages section kdelibs4-doc DPKG is earlier than 4:3.5.10.dfsg.1-0lenny4 AND kdelibs DPKG is earlier than 4:3.5.10.dfsg.1-0lenny4 AND kdelibs-data DPKG is earlier than 4:3.5.10.dfsg.1-0lenny4 OR Architecture depended section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section kdelibs4-dev DPKG is earlier than 4:3.5.10.dfsg.1-0lenny4 AND kdelibs4c2a DPKG is earlier than 4:3.5.10.dfsg.1-0lenny4 AND kdelibs-dbg DPKG is earlier than 4:3.5.10.dfsg.1-0lenny4

Definition Id: oval:org.mitre.oval:def:13490

Oval ID:	oval:org.mitre.oval:def:13490
Title:	USN-871-1 -- kdelibs vulnerability
Description:	A buffer overflow was found in the KDE libraries when converting a string to a floating point number. If a user or application linked against kdelibs were tricked into processing crafted input, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. It was discovered that the KDE libraries could use KHTML to process an unknown MIME type. If a user or application linked against kdelibs were tricked into opening a crafted file, an attacker could potentially trigger XMLHTTPRequests to remote sites.
Family:	unix	Class:	patch
Reference(s):	USN-871-1 CVE-2009-0689	Version:	5
Platform(s):	Ubuntu 8.04 Ubuntu 8.10 Ubuntu 9.10 Ubuntu 9.04	Product(s):	kdelibs
Definition Synopsis:
Release section Ubuntu 8.04 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section kdelibs4-doc DPKG is earlier than 4:3.5.10-0ubuntu1~hardy1.5 AND kdelibs DPKG is earlier than 4:3.5.10-0ubuntu1~hardy1.5 AND kdelibs-data DPKG is earlier than 4:3.5.10-0ubuntu1~hardy1.5 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section kdelibs4-dev DPKG is earlier than 4:3.5.10-0ubuntu1~hardy1.5 AND kdelibs4c2a DPKG is earlier than 4:3.5.10-0ubuntu1~hardy1.5 AND kdelibs-dbg DPKG is earlier than 4:3.5.10-0ubuntu1~hardy1.5 OR Release section Ubuntu 8.10 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section kdelibs4-doc DPKG is earlier than 4:3.5.10-0ubuntu6.4 AND kdelibs DPKG is earlier than 4:3.5.10-0ubuntu6.4 AND kdelibs-data DPKG is earlier than 4:3.5.10-0ubuntu6.4 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section kdelibs4-dev DPKG is earlier than 4:3.5.10-0ubuntu6.4 AND kdelibs4c2a DPKG is earlier than 4:3.5.10-0ubuntu6.4 AND kdelibs-dbg DPKG is earlier than 4:3.5.10-0ubuntu6.4 OR Release section Ubuntu 9.10 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section kdelibs DPKG is earlier than 4:3.5.10.dfsg.1-2ubuntu7.2 AND kdelibs-data DPKG is earlier than 4:3.5.10.dfsg.1-2ubuntu7.2 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section kdelibs4-dev DPKG is earlier than 4:3.5.10.dfsg.1-2ubuntu7.2 AND kdelibs4c2a DPKG is earlier than 4:3.5.10.dfsg.1-2ubuntu7.2 AND kdelibs-dbg DPKG is earlier than 4:3.5.10.dfsg.1-2ubuntu7.2 OR Release section Ubuntu 9.04 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section kdelibs DPKG is earlier than 4:3.5.10.dfsg.1-1ubuntu8.4 AND kdelibs-data DPKG is earlier than 4:3.5.10.dfsg.1-1ubuntu8.4 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section kdelibs4-dev DPKG is earlier than 4:3.5.10.dfsg.1-1ubuntu8.4 AND kdelibs4c2a DPKG is earlier than 4:3.5.10.dfsg.1-1ubuntu8.4 AND kdelibs-dbg DPKG is earlier than 4:3.5.10.dfsg.1-1ubuntu8.4

Definition Id: oval:org.mitre.oval:def:22669

Oval ID:	oval:org.mitre.oval:def:22669
Title:	ELSA-2009:1601: kdelibs security update (Critical)
Description:	Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1601-01 CVE-2009-0689	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	kdelibs
Definition Synopsis:
Oracle Linux 5.x rpm test kdelibs-apidocs is earlier than 6:3.5.4-25.el5_4.1 AND kdelibs is earlier than 6:3.5.4-25.el5_4.1 AND kdelibs-devel is earlier than 6:3.5.4-25.el5_4.1

Definition Id: oval:org.mitre.oval:def:23947

Oval ID:	oval:org.mitre.oval:def:23947
Title:	ELSA-2014:0311: php security update (Critical)
Description:	Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
Family:	unix	Class:	patch
Reference(s):	ELSA-2014:0311-00 CVE-2006-7243 CVE-2009-0689	Version:	7
Platform(s):	Oracle Linux 5	Product(s):	php
Definition Synopsis:
Oracle Linux 5.x rpm test php-devel is earlier than 0:5.1.6-44.el5_10 AND php-xmlrpc is earlier than 0:5.1.6-44.el5_10 AND php-bcmath is earlier than 0:5.1.6-44.el5_10 AND php-cli is earlier than 0:5.1.6-44.el5_10 AND php-gd is earlier than 0:5.1.6-44.el5_10 AND php-xml is earlier than 0:5.1.6-44.el5_10 AND php-mbstring is earlier than 0:5.1.6-44.el5_10 AND php is earlier than 0:5.1.6-44.el5_10 AND php-pdo is earlier than 0:5.1.6-44.el5_10 AND php-imap is earlier than 0:5.1.6-44.el5_10 AND php-pgsql is earlier than 0:5.1.6-44.el5_10 AND php-ldap is earlier than 0:5.1.6-44.el5_10 AND php-soap is earlier than 0:5.1.6-44.el5_10 AND php-ncurses is earlier than 0:5.1.6-44.el5_10 AND php-common is earlier than 0:5.1.6-44.el5_10 AND php-snmp is earlier than 0:5.1.6-44.el5_10 AND php-dba is earlier than 0:5.1.6-44.el5_10 AND php-odbc is earlier than 0:5.1.6-44.el5_10 AND php-mysql is earlier than 0:5.1.6-44.el5_10

Definition Id: oval:org.mitre.oval:def:24079

Oval ID:	oval:org.mitre.oval:def:24079
Title:	RHSA-2014:0311: php security update (Critical)
Description:	PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A buffer overflow flaw was found in the way PHP parsed floating point numbers from their text representation. If a PHP application converted untrusted input strings to numbers, an attacker able to provide such input could cause the application to crash or, possibly, execute arbitrary code with the privileges of the application. (CVE-2009-0689) It was found that PHP did not properly handle file names with a NULL character. A remote attacker could possibly use this flaw to make a PHP script access unexpected files and bypass intended file system access restrictions. (CVE-2006-7243) All php users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the updated packages, the httpd daemon must be restarted for the update to take effect.
Family:	unix	Class:	patch
Reference(s):	RHSA-2014:0311-00 CESA-2014:0311 CVE-2006-7243 CVE-2009-0689	Version:	11
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	php
Definition Synopsis:
Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages section php-devel is earlier than 0:5.1.6-44.el5_10 AND php-xmlrpc is earlier than 0:5.1.6-44.el5_10 AND php-bcmath is earlier than 0:5.1.6-44.el5_10 AND php-cli is earlier than 0:5.1.6-44.el5_10 AND php-gd is earlier than 0:5.1.6-44.el5_10 AND php-xml is earlier than 0:5.1.6-44.el5_10 AND php-mbstring is earlier than 0:5.1.6-44.el5_10 AND php is earlier than 0:5.1.6-44.el5_10 AND php-pdo is earlier than 0:5.1.6-44.el5_10 AND php-imap is earlier than 0:5.1.6-44.el5_10 AND php-pgsql is earlier than 0:5.1.6-44.el5_10 AND php-ldap is earlier than 0:5.1.6-44.el5_10 AND php-soap is earlier than 0:5.1.6-44.el5_10 AND php-ncurses is earlier than 0:5.1.6-44.el5_10 AND php-common is earlier than 0:5.1.6-44.el5_10 AND php-snmp is earlier than 0:5.1.6-44.el5_10 AND php-dba is earlier than 0:5.1.6-44.el5_10 AND php-odbc is earlier than 0:5.1.6-44.el5_10 AND php-mysql is earlier than 0:5.1.6-44.el5_10

Definition Id: oval:org.mitre.oval:def:25660

Oval ID:	oval:org.mitre.oval:def:25660
Title:	SUSE-SU-2013:1828-1 -- Security update for ruby
Description:	The following security issue has been fixed: * CVE-2013-4164: heap overflow in float point parsing
Family:	unix	Class:	patch
Reference(s):	SUSE-SU-2013:1828-1 CVE-2013-4164 CVE-2009-0689	Version:	3
Platform(s):	SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Desktop 11	Product(s):	ruby
Definition Synopsis:
SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise Desktop 11 release section Operation system section SUSE Linux Enterprise Server 11.x is installed AND SUSE Linux Enterprise Desktop 11.x is installed AND ruby RPM is earlier than 0:1.8.7.p357-0.9.13.1 AND SUSE Linux Enterprise Server 11 release section SUSE Linux Enterprise Server 11.x is installed Packages match section ruby-doc-html RPM is earlier than 0:1.8.7.p357-0.9.13.1 AND ruby-tk RPM is earlier than 0:1.8.7.p357-0.9.13.1

Definition Id: oval:org.mitre.oval:def:29365

Oval ID:	oval:org.mitre.oval:def:29365
Title:	RHSA-2009:1601 -- kdelibs security update (Critical)
Description:	Updated kdelibs packages that fix one security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. The kdelibs packages provide libraries for the K Desktop Environment (KDE). A buffer overflow flaw was found in the kdelibs string to floating point conversion routines. A web page containing malicious JavaScript could crash Konqueror or, potentially, execute arbitrary code with the privileges of the user running Konqueror. (CVE-2009-0689)
Family:	unix	Class:	patch
Reference(s):	RHSA-2009:1601 CESA-2009:1601-CentOS 5 CVE-2009-0689	Version:	3
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 4 CentOS Linux 5	Product(s):	kdelibs
Definition Synopsis:
Red Hat Enterprise Linux 5 release section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages match section kdelibs-devel is earlier than 6:3.5.4-25.el5_4.1 AND kdelibs is earlier than 6:3.5.4-25.el5_4.1 AND kdelibs-apidocs is earlier than 6:3.5.4-25.el5_4.1 AND Red Hat Enterprise Linux 4 release section The operating system installed on the system is Red Hat Enterprise Linux 4 Packages match section kdelibs is earlier than 6:3.3.1-17.el4_8.1 AND kdelibs-devel is earlier than 6:3.3.1-17.el4_8.1 AND CentOS Linux 5 release section The operating system installed on the system is CentOS Linux 5.x Packages match section kdelibs is earlier than 6:3.5.4-25.el5.centos.1 AND kdelibs-apidocs is earlier than 6:3.5.4-25.el5.centos.1 AND kdelibs-devel is earlier than 6:3.5.4-25.el5.centos.1

Definition Id: oval:org.mitre.oval:def:6528

Oval ID:	oval:org.mitre.oval:def:6528
Title:	Mozilla Firefox Floating Point Memory Allocation Vulnerability
Description:	Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2009-0689	Version:	10
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7	Product(s):	Mozilla Firefox
Definition Synopsis:
Mozilla Firefox Mainline release is installed AND Check for vulnerable version Mozilla Firefox Mainline version is 3.0.x to 3.0.14 AND Mozilla Firefox Mainline version is 3.5.x to 3.5.3

Definition Id: oval:org.mitre.oval:def:6826

Oval ID:	oval:org.mitre.oval:def:6826
Title:	DSA-1998 kdelibs -- buffer overflow
Description:	Maksymilian Arciemowicz discovered a buffer overflow in the internal string routines of the KDE core libraries, which could lead to the execution of arbitrary code.
Family:	unix	Class:	patch
Reference(s):	DSA-1998 CVE-2009-0689	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):	kdelibs
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independent section Installed architecture is all AND Packages section kdelibs4-doc is earlier than 4:3.5.10.dfsg.1-0lenny4 AND kdelibs is earlier than 4:3.5.10.dfsg.1-0lenny4 AND kdelibs-data is earlier than 4:3.5.10.dfsg.1-0lenny4 OR Architecture dependent section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section kdelibs4-dev is earlier than 4:3.5.10.dfsg.1-0lenny4 AND kdelibs4c2a is earlier than 4:3.5.10.dfsg.1-0lenny4 AND kdelibs-dbg is earlier than 4:3.5.10.dfsg.1-0lenny4

Definition Id: oval:org.mitre.oval:def:9541

Oval ID:	oval:org.mitre.oval:def:9541
Title:	Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
Description:	Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-0689	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section thunderbird is earlier than 0:1.5.0.12-25.el4 AND kdelibs is earlier than 6:3.3.1-17.el4_8.1 AND kdelibs-devel is earlier than 6:3.3.1-17.el4_8.1 OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kdelibs-apidocs is earlier than 6:3.5.4-25.el5_4.1 AND thunderbird is earlier than 0:2.0.0.24-2.el5_4 AND kdelibs is earlier than 6:3.5.4-25.el5_4.1 AND kdelibs-devel is earlier than 6:3.5.4-25.el5_4.1

CPE : Common Platform Enumeration

Type	Description	Count
Application	K-Meleon Project K-Meleon cpe:2.3:a:k-meleon_project:k-meleon:1.5.3:::::::*	1
Application	Mozilla Firefox cpe:2.3:a:mozilla:firefox:3.5.3:::::::* cpe:2.3:a:mozilla:firefox:3.5.2:::::::* cpe:2.3:a:mozilla:firefox:3.5.1:::::::* cpe:2.3:a:mozilla:firefox:3.5:::::::* cpe:2.3:a:mozilla:firefox:3.0.9:::::::* cpe:2.3:a:mozilla:firefox:3.0.8:::::::* cpe:2.3:a:mozilla:firefox:3.0.7:::::::* cpe:2.3:a:mozilla:firefox:3.0.6:::::::* cpe:2.3:a:mozilla:firefox:3.0.5:::::::* cpe:2.3:a:mozilla:firefox:3.0.4:::::::* cpe:2.3:a:mozilla:firefox:3.0.3:::::::* cpe:2.3:a:mozilla:firefox:3.0.2:::::::* cpe:2.3:a:mozilla:firefox:3.0.14:::::::* cpe:2.3:a:mozilla:firefox:3.0.13:::::::* cpe:2.3:a:mozilla:firefox:3.0.12:::::::* cpe:2.3:a:mozilla:firefox:3.0.11:::::::* cpe:2.3:a:mozilla:firefox:3.0.10:::::::* cpe:2.3:a:mozilla:firefox:3.0.1:::::::*	18
Application	Mozilla Seamonkey cpe:2.3:a:mozilla:seamonkey:1.1.8:::::::*	1
Os	Freebsd cpe:2.3:o:freebsd:freebsd:7.2:pre-release:::::: cpe:2.3:o:freebsd:freebsd:7.2:stable:::::: cpe:2.3:o:freebsd:freebsd:7.2:-:::::: cpe:2.3:o:freebsd:freebsd:6.4:release_p5:::::: cpe:2.3:o:freebsd:freebsd:6.4:release_p2:::::: cpe:2.3:o:freebsd:freebsd:6.4:release_p3:::::: cpe:2.3:o:freebsd:freebsd:6.4:release:::::: cpe:2.3:o:freebsd:freebsd:6.4:release_p4:::::: cpe:2.3:o:freebsd:freebsd:6.4:stable:::::: cpe:2.3:o:freebsd:freebsd:6.4:-::::::	10
Os	Netbsd cpe:2.3:o:netbsd:netbsd:5.0:::::::*	1
Os	Openbsd cpe:2.3:o:openbsd:openbsd:4.5:::::::*	1

ExploitDB Exploits

id	Description
2009-12-11	Sunbird 0.9 Array Overrun (code execution) 0day
2009-11-19	Opera 10.01 Remote Array Overrun
2009-11-19	K-Meleon 1.5.3 Remote Array Overrun
2009-11-19	SeaMonkey 1.1.8 Remote Array Overrun
2009-11-19	KDE KDELibs 4.3.3 Remote Array Overrun

OpenVAS Exploits

Date	Description
2011-08-09	Name : CentOS Update for firefox CESA-2009:1530 centos4 i386 File : nvt/gb_CESA-2009_1530_firefox_centos4_i386.nasl
2011-08-09	Name : CentOS Update for seamonkey CESA-2009:1531 centos3 i386 File : nvt/gb_CESA-2009_1531_seamonkey_centos3_i386.nasl
2011-08-09	Name : CentOS Update for seamonkey CESA-2009:1531 centos4 i386 File : nvt/gb_CESA-2009_1531_seamonkey_centos4_i386.nasl
2011-08-09	Name : CentOS Update for kdelibs CESA-2009:1601 centos4 i386 File : nvt/gb_CESA-2009_1601_kdelibs_centos4_i386.nasl
2011-08-09	Name : CentOS Update for kdelibs CESA-2009:1601 centos5 i386 File : nvt/gb_CESA-2009_1601_kdelibs_centos5_i386.nasl
2011-08-09	Name : CentOS Update for thunderbird CESA-2010:0153 centos5 i386 File : nvt/gb_CESA-2010_0153_thunderbird_centos5_i386.nasl
2010-05-12	Name : Mac OS X 10.6.3 Update / Mac OS X Security Update 2010-002 File : nvt/macosx_upd_10_6_3_secupd_2010-002.nasl
2010-04-29	Name : Fedora Update for seamonkey FEDORA-2010-7100 File : nvt/gb_fedora_2010_7100_seamonkey_fc11.nasl
2010-04-16	Name : Mandriva Update for krb5 MDVSA-2010:071 (krb5) File : nvt/gb_mandriva_MDVSA_2010_071.nasl
2010-03-30	Name : FreeBSD Ports: seamonkey, linux-seamonkey File : nvt/freebsd_seamonkey.nasl
2010-03-22	Name : RedHat Update for thunderbird RHSA-2010:0154-02 File : nvt/gb_RHSA-2010_0154-02_thunderbird.nasl
2010-03-22	Name : Ubuntu Update for thunderbird vulnerabilities USN-915-1 File : nvt/gb_ubuntu_USN_915_1.nasl
2010-03-22	Name : CentOS Update for thunderbird CESA-2010:0154 centos4 i386 File : nvt/gb_CESA-2010_0154_thunderbird_centos4_i386.nasl
2010-02-25	Name : Debian Security Advisory DSA 1998-1 (kdelibs) File : nvt/deb_1998_1.nasl
2010-01-29	Name : Mandriva Update for kdelibs4 MDVSA-2010:027 (kdelibs4) File : nvt/gb_mandriva_MDVSA_2010_027.nasl
2010-01-29	Name : Mandriva Update for kdelibs4 MDVSA-2010:028 (kdelibs4) File : nvt/gb_mandriva_MDVSA_2010_028.nasl
2009-12-14	Name : SLES11: Security update for kdelibs3 File : nvt/sles11_kdelibs3.nasl
2009-12-14	Name : Mandriva Security Advisory MDVSA-2009:330 (kdelibs) File : nvt/mdksa_2009_330.nasl
2009-12-10	Name : FreeBSD Ports: opera File : nvt/freebsd_opera19.nasl
2009-12-10	Name : Mandriva Security Advisory MDVSA-2009:290-1 (firefox) File : nvt/mdksa_2009_290_1.nasl
2009-12-03	Name : RedHat Security Advisory RHSA-2009:1601 File : nvt/RHSA_2009_1601.nasl
2009-11-23	Name : Ubuntu USN-853-1 (xulrunner-1.9.1) File : nvt/ubuntu_853_1.nasl
2009-11-11	Name : SLES11: Security update for Mozilla Firefox File : nvt/sles11_MozillaFirefox7.nasl
2009-11-11	Name : SLES11: Security update for Mozilla File : nvt/sles11_mozilla-nspr.nasl
2009-11-11	Name : SLES11: Security update for Mozilla XULRunner File : nvt/sles11_mozilla-xulrunn1.nasl
2009-11-11	Name : SuSE Security Advisory SUSE-SA:2009:052 (MozillaFirefox) File : nvt/suse_sa_2009_052.nasl
2009-11-11	Name : SLES10: Security update for Mozilla XULRunner File : nvt/sles10_mozilla-xulrunn0.nasl
2009-11-11	Name : SuSE Security Summary SUSE-SR:2009:018 File : nvt/suse_sr_2009_018.nasl
2009-11-11	Name : RedHat Security Advisory RHSA-2009:1531 File : nvt/RHSA_2009_1531.nasl
2009-11-11	Name : SLES10: Security update for mozilla-nspr File : nvt/sles10_mozilla-nspr0.nasl
2009-11-11	Name : SLES10: Security update for Mozilla Firefox File : nvt/sles10_MozillaFirefox7.nasl
2009-11-11	Name : CentOS Security Advisory CESA-2009:1531 (seamonkey) File : nvt/ovcesa2009_1531.nasl
2009-11-11	Name : CentOS Security Advisory CESA-2009:1530 (firefox) File : nvt/ovcesa2009_1530.nasl
2009-11-11	Name : Mandriva Security Advisory MDVSA-2009:290 (firefox) File : nvt/mdksa_2009_290.nasl
2009-11-11	Name : FreeBSD Ports: firefox File : nvt/freebsd_firefox42.nasl
2009-11-11	Name : Fedora Core 10 FEDORA-2009-10981 (blam) File : nvt/fcore_2009_10981.nasl
2009-11-11	Name : Fedora Core 11 FEDORA-2009-10878 (chmsee) File : nvt/fcore_2009_10878.nasl
2009-11-11	Name : Debian Security Advisory DSA 1931-1 (nspr) File : nvt/deb_1931_1.nasl
2009-11-11	Name : RedHat Security Advisory RHSA-2009:1530 File : nvt/RHSA_2009_1530.nasl
2009-11-02	Name : Mozilla Firefox Multiple Vulnerabilities Nov-09 (Win) File : nvt/gb_firefox_mult_vuln_nov09_win.nasl
2009-11-02	Name : Mozilla Firefox Multiple Vulnerabilities Nov-09 (Linux) File : nvt/gb_firefox_mult_vuln_nov09_lin.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
63646	J Programming Language libc dtoa Implementation Floating Point Parsing Memory...
63641	Matlab libc dtoa Implementation Floating Point Parsing Memory Corruption
63639	Apple Mac OS X libc dtoa Implementation Floating Point Parsing Memory Corruption
62402	K-Meleon libc dtoa Implementation Floating Point Parsing Memory Corruption
61189	Mozilla Sunbird libc dtoa Implementation Floating Point Parsing Memory Corrup...
61188	Flock Browser libc dtoa Implementation Floating Point Parsing Memory Corruption
61187	KDE kdelibs libc dtoa Implementation Floating Point Parsing Memory Corruption
61186	Opera libc dtoa Implementation Floating Point Parsing Memory Corruption
61091	Mozilla Multiple Products libc dtoa Implementation Floating Point Parsing Mem...
55603	libc gdtoa/misc.c dtoa() Implementation printf Function Array Overflow

Snort® IPS/IDS

Date	Description
2014-01-10	Mozilla products floating point buffer overflow attempt RuleID : 21155 - Revision : 6 - Type : BROWSER-FIREFOX
2014-01-10	Mozilla products floating point buffer overflow attempt RuleID : 21154 - Revision : 6 - Type : BROWSER-FIREFOX

Nessus® Vulnerability Scanner

Date	Description
2018-11-02	Name : The remote Debian host is missing a security update. File : debian_DLA-1564.nasl - Type : ACT_GATHER_INFO
2016-12-01	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2016-2958-1.nasl - Type : ACT_GATHER_INFO
2016-03-08	Name : The remote VMware ESX host is missing a security-related patch. File : vmware_VMSA-2010-0001_remote.nasl - Type : ACT_GATHER_INFO
2016-03-04	Name : The remote Fedora host is missing a security update. File : fedora_2015-6dec4e6d5f.nasl - Type : ACT_GATHER_INFO
2016-01-28	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2016-0257-1.nasl - Type : ACT_GATHER_INFO
2016-01-04	Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_4b3a7e70afce11e5b86414dae9d210b8.nasl - Type : ACT_GATHER_INFO
2016-01-04	Name : The remote Debian host is missing a security update. File : debian_DLA-376.nasl - Type : ACT_GATHER_INFO
2014-11-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2014-0312.nasl - Type : ACT_GATHER_INFO
2014-03-20	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20140318_php_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2014-03-19	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2014-0311.nasl - Type : ACT_GATHER_INFO
2014-03-19	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2014-0311.nasl - Type : ACT_GATHER_INFO
2014-03-19	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2014-0311.nasl - Type : ACT_GATHER_INFO
2013-12-05	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_ruby-131125.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2010-0154.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1601.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1531.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1530.nasl - Type : ACT_GATHER_INFO
2013-06-29	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1601.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0153.nasl - Type : ACT_GATHER_INFO
2013-01-08	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201301-01.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091027_seamonkey_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091027_firefox_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091124_kdelibs_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing a security update. File : sl_20100317_thunderbird_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_MozillaFirefox-6609.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kdelibs3-6692.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_mozilla-nspr-6631.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_mozilla-xulrunner190-6617.nasl - Type : ACT_GATHER_INFO
2010-07-30	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-028.nasl - Type : ACT_GATHER_INFO
2010-07-30	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-027.nasl - Type : ACT_GATHER_INFO
2010-07-30	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-294.nasl - Type : ACT_GATHER_INFO
2010-07-01	Name : The remote Fedora host is missing a security update. File : fedora_2010-7100.nasl - Type : ACT_GATHER_INFO
2010-05-20	Name : The remote openSUSE host is missing a security update. File : suse_11_1_seamonkey-100430.nasl - Type : ACT_GATHER_INFO
2010-05-20	Name : The remote openSUSE host is missing a security update. File : suse_11_0_seamonkey-100430.nasl - Type : ACT_GATHER_INFO
2010-05-20	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12616.nasl - Type : ACT_GATHER_INFO
2010-05-11	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0154.nasl - Type : ACT_GATHER_INFO
2010-04-14	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-071.nasl - Type : ACT_GATHER_INFO
2010-03-30	Name : The remote openSUSE host is missing a security update. File : suse_11_1_MozillaThunderbird-100324.nasl - Type : ACT_GATHER_INFO
2010-03-30	Name : The remote openSUSE host is missing a security update. File : suse_11_0_MozillaThunderbird-100324.nasl - Type : ACT_GATHER_INFO
2010-03-29	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2010-0153.nasl - Type : ACT_GATHER_INFO
2010-03-29	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_10_6_3.nasl - Type : ACT_GATHER_INFO
2010-03-29	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_SecUpd2010-002.nasl - Type : ACT_GATHER_INFO
2010-03-22	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_56cfe192329f11dfabb2000f20797ede.nasl - Type : ACT_GATHER_INFO
2010-03-19	Name : A web browser on the remote host is affected by multiple vulnerabilities. File : seamonkey_1119.nasl - Type : ACT_GATHER_INFO
2010-03-19	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2010-0154.nasl - Type : ACT_GATHER_INFO
2010-03-19	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-915-1.nasl - Type : ACT_GATHER_INFO
2010-03-19	Name : The remote Windows host contains a mail client that is affected by multiple v... File : mozilla_thunderbird_20024.nasl - Type : ACT_GATHER_INFO
2010-02-24	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1998.nasl - Type : ACT_GATHER_INFO
2010-02-24	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1931.nasl - Type : ACT_GATHER_INFO
2010-01-12	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kdelibs4-100107.nasl - Type : ACT_GATHER_INFO
2010-01-08	Name : The remote VMware ESX host is missing a security-related patch. File : vmware_VMSA-2010-0001.nasl - Type : ACT_GATHER_INFO
2009-12-30	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-346.nasl - Type : ACT_GATHER_INFO
2009-12-22	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12563.nasl - Type : ACT_GATHER_INFO
2009-12-11	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-871-2.nasl - Type : ACT_GATHER_INFO
2009-12-11	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-871-1.nasl - Type : ACT_GATHER_INFO
2009-12-08	Name : The remote openSUSE host is missing a security update. File : suse_11_2_kdelibs3-091204.nasl - Type : ACT_GATHER_INFO
2009-12-08	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kdelibs3-091202.nasl - Type : ACT_GATHER_INFO
2009-12-08	Name : The remote openSUSE host is missing a security update. File : suse_11_1_kdelibs3-091202.nasl - Type : ACT_GATHER_INFO
2009-12-08	Name : The remote openSUSE host is missing a security update. File : suse_11_0_kdelibs3-091202.nasl - Type : ACT_GATHER_INFO
2009-12-08	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kdelibs3-6691.nasl - Type : ACT_GATHER_INFO
2009-12-04	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-290.nasl - Type : ACT_GATHER_INFO
2009-12-02	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_6431c4dbdeb411de90780030843d3802.nasl - Type : ACT_GATHER_INFO
2009-11-30	Name : The remote openSUSE host is missing a security update. File : suse_11_2_opera-091125.nasl - Type : ACT_GATHER_INFO
2009-11-30	Name : The remote openSUSE host is missing a security update. File : suse_11_1_opera-091125.nasl - Type : ACT_GATHER_INFO
2009-11-30	Name : The remote openSUSE host is missing a security update. File : suse_11_0_opera-091125.nasl - Type : ACT_GATHER_INFO
2009-11-25	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1601.nasl - Type : ACT_GATHER_INFO
2009-11-25	Name : The remote host contains a web browser that is affected by multiple issues. File : opera_1010.nasl - Type : ACT_GATHER_INFO
2009-11-12	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-853-2.nasl - Type : ACT_GATHER_INFO
2009-11-09	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_mozilla-nspr-6630.nasl - Type : ACT_GATHER_INFO
2009-11-09	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_mozilla-nspr-091103.nasl - Type : ACT_GATHER_INFO
2009-11-09	Name : The remote openSUSE host is missing a security update. File : suse_11_1_mozilla-nspr-091104.nasl - Type : ACT_GATHER_INFO
2009-11-09	Name : The remote openSUSE host is missing a security update. File : suse_11_0_mozilla-nspr-091104.nasl - Type : ACT_GATHER_INFO
2009-11-05	Name : The remote openSUSE host is missing a security update. File : suse_11_1_MozillaFirefox-091102.nasl - Type : ACT_GATHER_INFO
2009-11-05	Name : The remote Fedora host is missing one or more security updates. File : fedora_2009-10981.nasl - Type : ACT_GATHER_INFO
2009-11-05	Name : The remote openSUSE host is missing a security update. File : suse_11_0_MozillaFirefox-091103.nasl - Type : ACT_GATHER_INFO
2009-11-04	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_MozillaFirefox-6606.nasl - Type : ACT_GATHER_INFO
2009-11-04	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_mozilla-xulrunner190-091030.nasl - Type : ACT_GATHER_INFO
2009-11-04	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_mozilla-xulrunner190-6616.nasl - Type : ACT_GATHER_INFO
2009-11-04	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_MozillaFirefox-091030.nasl - Type : ACT_GATHER_INFO
2009-11-02	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-853-1.nasl - Type : ACT_GATHER_INFO
2009-10-29	Name : The remote Fedora host is missing one or more security updates. File : fedora_2009-10878.nasl - Type : ACT_GATHER_INFO
2009-10-29	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1531.nasl - Type : ACT_GATHER_INFO
2009-10-29	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_c87aa2d2c3c411deab08000f20797ede.nasl - Type : ACT_GATHER_INFO
2009-10-29	Name : The remote Windows host contains a web browser that is affected by multiple v... File : mozilla_firefox_3015.nasl - Type : ACT_GATHER_INFO
2009-10-29	Name : The remote Windows host contains a web browser that is affected by multiple v... File : mozilla_firefox_354.nasl - Type : ACT_GATHER_INFO
2009-10-29	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1530.nasl - Type : ACT_GATHER_INFO
2009-10-28	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1530.nasl - Type : ACT_GATHER_INFO
2009-10-28	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1531.nasl - Type : ACT_GATHER_INFO
2009-10-01	Name : The remote host contains a web browser that is affected by a buffer overflow ... File : google_chrome_3_0_195_24.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 23:10:58	Multiple Updates
2024-11-28 12:18:22	Multiple Updates
2024-08-02 12:11:07	Multiple Updates
2024-08-02 01:03:02	Multiple Updates
2024-02-02 01:10:38	Multiple Updates
2024-02-01 12:03:00	Multiple Updates
2023-09-05 12:09:56	Multiple Updates
2023-09-05 01:02:51	Multiple Updates
2023-09-02 12:10:02	Multiple Updates
2023-09-02 01:02:52	Multiple Updates
2023-08-12 12:11:43	Multiple Updates
2023-08-12 01:02:51	Multiple Updates
2023-08-11 12:10:04	Multiple Updates
2023-08-11 01:02:58	Multiple Updates
2023-08-06 12:09:40	Multiple Updates
2023-08-06 01:02:53	Multiple Updates
2023-08-04 12:09:45	Multiple Updates
2023-08-04 01:02:56	Multiple Updates
2023-07-14 12:09:43	Multiple Updates
2023-07-14 01:02:53	Multiple Updates
2023-03-29 01:11:11	Multiple Updates
2023-03-28 12:02:59	Multiple Updates
2022-10-11 12:08:39	Multiple Updates
2022-10-11 01:02:42	Multiple Updates
2021-05-04 12:09:11	Multiple Updates
2021-04-22 01:09:31	Multiple Updates
2020-05-23 00:23:24	Multiple Updates
2019-03-19 12:03:06	Multiple Updates
2018-11-02 13:20:28	Multiple Updates
2018-10-11 00:19:31	Multiple Updates
2017-09-29 09:24:05	Multiple Updates
2016-12-02 13:24:58	Multiple Updates
2016-04-26 18:39:34	Multiple Updates
2016-03-09 13:25:54	Multiple Updates
2016-03-05 13:26:42	Multiple Updates
2016-01-29 13:26:20	Multiple Updates
2016-01-05 13:25:44	Multiple Updates
2014-11-08 13:29:44	Multiple Updates
2014-03-26 13:21:50	Multiple Updates
2014-03-21 13:21:25	Multiple Updates
2014-03-20 13:21:37	Multiple Updates
2014-02-17 10:48:58	Multiple Updates
2014-01-19 21:25:43	Multiple Updates
2013-05-10 23:45:04	Multiple Updates

Global Informations

Type	Count
Capec ID(s)	11
CWE ID(s)	2
Oval ID(s)	10
CPE ID(s)	32
Sources(s)	53
osvdb(s)	10
ExploitDB Exploit(s)	5
Openvas Exploit(s)	41
Snort® Rule(s)	2
Nessus® Exploit(s)	89

	Related
10	USN-915-1
10	SUN-272909
10	RHSA-2010:0154
10	RHSA-2010:0153
10	MDVSA-2010:071
10	MDVSA-2009:294
9.3	MDVSA-2010:027
9.3	MDVSA-2009:346
9.3	MDVSA-2009:330
7.5	MDVSA-2010:028
6.8	USN-871-1
6.8	RHSA-2014:0312
6.8	RHSA-2014:0311
6.8	RHSA-2009:1601
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 14 more Alert(s)