CVE-2009-0946

Published Apr 17, 2009

Last updated a month ago

CVSS info 7.5

Overview

Description: Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c.
Source: cve@mitre.org
NVD status: Deferred

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-190

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:freetype:freetype:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7039ABA3-F36E-4337-8F61-470B2FA1C9EF",
            "versionEndIncluding": "2.3.9"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F92AB32-E7DE-43F4-B877-1F41FA162EC7"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C757774-08E7-40AA-B532-6F705C8F7639"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "036E8A89-7A16-411F-9D31-676313BB7244"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "454A5D17-B171-4F1F-9E0B-F18D1E5CA9FD"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7EBFE35C-E243-43D1-883D-4398D71763CC"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4747CC68-FAF4-482F-929A-9DA6C24CB663"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5D026D0-EF78-438D-BEDD-FC8571F3ACEB"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:10.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C35B68DF-1440-4587-8458-9C5F4D1E43F3"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:11.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B42AB65-443B-4655-BAEA-4EB4A43D9509"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FBF7B6A8-3DF9-46EC-A90E-6EF68C39F883"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38C3AEB0-59E2-400A-8943-60C0A223B680"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F13F07CC-739B-465C-9184-0E9D708BD4C7"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apple:safari:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BDA6DB4-A0DA-43CA-AABD-10EEEEB28EAB"
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "614C28E3-3645-4B20-95E5-42E7F123ADDB",
            "versionEndIncluding": "2.2.1",
            "versionStartIncluding": "1.0.0"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6DA1D55-B689-47CF-A55F-3C16DA4EFFFF",
            "versionEndIncluding": "10.6.4",
            "versionStartIncluding": "10.6.0"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6EE39585-CF3B-4493-96D8-B394544C7643"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1335E35A-D381-4056-9E78-37BC6DF8AD98"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "924AFEE6-E331-4E10-B1B8-1FF1FF801120",
            "versionEndIncluding": "10.6.4",
            "versionStartIncluding": "10.6.0"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x_server:10.4.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D09D5933-A7D9-4A61-B863-CD8E7D5E67D8"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "82B4CD59-9F37-4EF0-BA43-427CFD6E1329"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References