CVE-2009-1194

Published May 11, 2009

Last updated 2 years ago

Overview

Description: Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-189

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:pango:pango:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8B42FA2-C5FA-4F4B-8542-889AEF8BD855",
            "versionEndIncluding": "1.22"
          },
          {
            "criteria": "cpe:2.3:a:pango:pango:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A419445-E8C0-4BC1-A592-9B63FCC8354C"
          },
          {
            "criteria": "cpe:2.3:a:pango:pango:1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31EA2429-07F7-4569-9D4D-0397BD2708BC"
          },
          {
            "criteria": "cpe:2.3:a:pango:pango:1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F64E49C-25CF-4C59-AD1A-AA804AA1D746"
          },
          {
            "criteria": "cpe:2.3:a:pango:pango:1.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F5C554F1-F4B7-47C3-B6E0-8822B205B79B"
          },
          {
            "criteria": "cpe:2.3:a:pango:pango:1.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AE0ECCE2-76E8-4A4B-A6CA-EEC45E3D7403"
          },
          {
            "criteria": "cpe:2.3:a:pango:pango:1.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6322FCB-DC34-4C4B-A8AE-9983927F6B25"
          },
          {
            "criteria": "cpe:2.3:a:pango:pango:1.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "85CB58A0-A452-40EE-818F-A56723BBBF43"
          },
          {
            "criteria": "cpe:2.3:a:pango:pango:1.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30BA57EA-8702-4247-8A75-DB5D2AD18F4C"
          },
          {
            "criteria": "cpe:2.3:a:pango:pango:1.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F73FC80-FB3C-4AEA-BB27-961CD378B1B0"
          },
          {
            "criteria": "cpe:2.3:a:pango:pango:1.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B78E87B1-4879-42AE-9B98-9AA176C8ECC7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References