Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2009-3389
Description:Integer overflow in libtheora in Xiph.Org Theora before 1.1, as used in Mozilla Firefox 3.5 before 3.5.6 and SeaMonkey before 2.0.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a video with large dimensions.
Test IDs: 1.3.6.1.4.1.25623.1.0.67398   1.3.6.1.4.1.25623.1.0.66929   1.3.6.1.4.1.25623.1.0.121085  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2009-3389
BugTraq ID: 37349
http://www.securityfocus.com/bid/37349
BugTraq ID: 37368
http://www.securityfocus.com/bid/37368
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00995.html
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01034.html
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01041.html
http://www.mandriva.com/security/advisories?name=MDVSA-2010:043
http://www.theora.org/news/#libtheora-1.1.0
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7967
http://secunia.com/advisories/37699
http://secunia.com/advisories/37785
http://secunia.com/advisories/37856
http://secunia.com/advisories/37881
http://secunia.com/advisories/39317
SuSE Security Announcement: SUSE-SA:2009:063 (Google Search)
http://www.novell.com/linux/security/advisories/2009_63_firefox.html
SuSE Security Announcement: SUSE-SR:2010:008 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html
SuSE Security Announcement: SUSE-SR:2010:013 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
http://www.ubuntu.com/usn/USN-874-1
http://www.vupen.com/english/advisories/2009/3547
XForce ISS Database: mozilla-theora-bo(54805)
https://exchange.xforce.ibmcloud.com/vulnerabilities/54805




© 1998-2024 E-Soft Inc. All rights reserved.