Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2009-4274

Disclosure Date: February 12, 2010
CVE-2009-4274
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Stack-based buffer overflow in converter/ppm/xpmtoppm.c in netpbm before 10.47.07 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an XPM image file that contains a crafted header field associated with a large color index value.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • netpbm

Products

  • netpbm 10.0,
  • netpbm 10.1,
  • netpbm 10.10,
  • netpbm 10.11,
  • netpbm 10.12,
  • netpbm 10.13,
  • netpbm 10.14,
  • netpbm 10.15,
  • netpbm 10.16,
  • netpbm 10.17,
  • netpbm 10.18,
  • netpbm 10.19,
  • netpbm 10.2,
  • netpbm 10.20,
  • netpbm 10.21,
  • netpbm 10.22,
  • netpbm 10.23,
  • netpbm 10.24,
  • netpbm 10.25,
  • netpbm 10.26,
  • netpbm 10.27,
  • netpbm 10.28,
  • netpbm 10.29,
  • netpbm 10.3,
  • netpbm 10.30,
  • netpbm 10.31,
  • netpbm 10.32,
  • netpbm 10.33,
  • netpbm 10.34,
  • netpbm 10.35.00,
  • netpbm 10.35.01,
  • netpbm 10.35.02,
  • netpbm 10.35.03,
  • netpbm 10.35.04,
  • netpbm 10.35.05,
  • netpbm 10.35.06,
  • netpbm 10.35.07,
  • netpbm 10.35.08,
  • netpbm 10.35.09,
  • netpbm 10.35.10,
  • netpbm 10.35.11,
  • netpbm 10.35.12,
  • netpbm 10.35.13,
  • netpbm 10.35.14,
  • netpbm 10.35.15,
  • netpbm 10.35.16,
  • netpbm 10.35.17,
  • netpbm 10.35.18,
  • netpbm 10.35.19,
  • netpbm 10.35.20,
  • netpbm 10.35.21,
  • netpbm 10.35.22,
  • netpbm 10.35.23,
  • netpbm 10.35.24,
  • netpbm 10.35.25,
  • netpbm 10.35.26,
  • netpbm 10.35.27,
  • netpbm 10.35.28,
  • netpbm 10.35.29,
  • netpbm 10.35.30,
  • netpbm 10.35.31,
  • netpbm 10.35.32,
  • netpbm 10.35.33,
  • netpbm 10.35.34,
  • netpbm 10.35.35,
  • netpbm 10.35.36,
  • netpbm 10.35.37,
  • netpbm 10.35.38,
  • netpbm 10.35.39,
  • netpbm 10.35.40,
  • netpbm 10.35.41,
  • netpbm 10.35.42,
  • netpbm 10.35.43,
  • netpbm 10.35.44,
  • netpbm 10.35.45,
  • netpbm 10.35.46,
  • netpbm 10.35.47,
  • netpbm 10.36.00,
  • netpbm 10.37.00,
  • netpbm 10.38.00,
  • netpbm 10.39.00,
  • netpbm 10.4,
  • netpbm 10.40.00,
  • netpbm 10.41.00,
  • netpbm 10.42.00,
  • netpbm 10.43.00,
  • netpbm 10.44.00,
  • netpbm 10.45.00,
  • netpbm 10.46.00,
  • netpbm 10.47.00,
  • netpbm 10.47.01,
  • netpbm 10.47.02,
  • netpbm 10.47.03,
  • netpbm 10.47.04,
  • netpbm 10.47.05,
  • netpbm 10.47.06,
  • netpbm 10.5,
  • netpbm 10.6,
  • netpbm 10.7,
  • netpbm 10.8,
  • netpbm 10.9
Technical Analysis