NVD

Id
47914  
Name
CVE-2009-0585  
Description
Integer overflow in the soup_base64_encode function in soup-misc.c in libsoup 2.x.x before 2.2.x, and 2.x before 2.24, allows context-dependent attackers to execute arbitrary code via a long string that is converted to a base64 representation.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2009-03-14  
Modified Date
2010-08-21  
Seq
2009-0585  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
240186 47914 CVE-2009-0585 SUSE-SR:2009:010  View
240187 47914 CVE-2009-0585 http://ocert.org/patches/2008-015/libsoup-CVE-2009-0585.diff  View
240188 47914 CVE-2009-0585 [oss-security] 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows  View
240189 47914 CVE-2009-0585 oval:org.mitre.oval:def:9599  View
240190 47914 CVE-2009-0585 http://support.avaya.com/elmodocs2/security/ASA-2009-088.htm  View
240191 47914 CVE-2009-0585 DSA-1748  View
240192 47914 CVE-2009-0585 MDVSA-2009:081  View
240193 47914 CVE-2009-0585 http://www.ocert.org/advisories/ocert-2008-015.html  View
240194 47914 CVE-2009-0585 RHSA-2009:0344  View
240195 47914 CVE-2009-0585 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows  View
240196 47914 CVE-2009-0585 34100  View
240197 47914 CVE-2009-0585 USN-737-1  View
240198 47914 CVE-2009-0585 libsoup-soupmisc-bo(49273)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40560 JVNDB-2009-001566 libsoup の soup_base64_encode 関数における整数オーバーフローの脆弱性 libsoup の soup-misc.c にある soup_base64_encode 関数には、base64 の変換処理に関して不備があることにより、整数オーバーフローの脆弱性が存在します。 CVE-2009-0585 38016 CVE-2009-0585 47914 7.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001566.html 2009-03-14 2009-07-07 View