mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 01:02:25 +00:00
399 lines
14 KiB
JSON
399 lines
14 KiB
JSON
{
|
|
"id": "CVE-2009-4846",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2010-05-07T18:30:01.217",
|
|
"lastModified": "2024-11-21T01:10:36.443",
|
|
"vulnStatus": "Modified",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Multiple buffer overflows in Deliantra Server before 2.82 allow remote attackers to execute arbitrary code via vectors related to (1) the command_gsay function in server/c_party.C and (2) the book implementation."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "M\u00faltiples desboradamientos de b\u00fafer en Deliantra Server anteriores a v2.82 permiten a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de vectores relativos a (1) funci\u00f3n command_gsay en server/c_party.C y (2) la implementaci\u00f3n del libro."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
|
|
"baseScore": 6.8,
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "MEDIUM",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "PARTIAL",
|
|
"integrityImpact": "PARTIAL",
|
|
"availabilityImpact": "PARTIAL"
|
|
},
|
|
"baseSeverity": "MEDIUM",
|
|
"exploitabilityScore": 8.6,
|
|
"impactScore": 6.4,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-119"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:*:*:*:*:*:*:*:*",
|
|
"versionEndIncluding": "2.81",
|
|
"matchCriteriaId": "63B19D1C-87C5-432F-8BE5-B644C442DC6A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.99:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "7653496F-6825-4AAA-9E2D-AC3963CD05AA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9955:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "DFCFD04D-C246-4D54-B996-555F1F90D7D8"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9956:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C950392C-1A32-45EC-97D4-C04FBA8F58F8"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9959:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "7A9514D8-C83E-4AF6-A87F-BCDCAFEA01F6"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9960:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "0649F910-A018-4E1C-BDC7-EF927BD538F6"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9963:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "21A592D2-497F-42B1-B176-4E8D7CE0D199"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9965:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5FC2FF6F-3EAF-46A1-AE2B-C1975F81986B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9967:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "CFEBB9CD-AE36-4FD9-AAD9-D6971561B720"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9970:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "839B9CAA-481E-4204-B9AB-2E2B05307E1B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9972:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "15897149-5B2A-4BEF-BABD-DBDD09CA0EA3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9974:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "B6AB044D-2B5A-4BE5-8571-F827C0159195"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9975:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "BADA71DE-BD62-4A95-A3FE-1E2C72E1560A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9976:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5E638172-2A38-428C-B1ED-A351C6938938"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9977:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "9153061E-11B6-46D2-988D-052DF6EE4453"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:0.9978:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "62553756-A3BB-4F57-8DEE-BF623B02E86E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "398C2EFC-8D7C-4875-90B1-30773DA3ED35"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "8833523B-2176-44F3-A0C4-25820811ABBE"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.01:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2B614A59-475A-4411-9E44-C4AC5AF834E1"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.02:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "355E0FF5-C147-49C3-A084-FE98186997DB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "017F94E0-6F43-4FA5-A7EC-B22891701923"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4285FD9A-F538-4E58-AE3B-4C17BC3D241E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.03:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "869AF3E6-A8AF-4F19-AE03-029DAA132D72"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "A1F3A9A2-4B9B-44A1-A025-A614DD172189"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "7182252A-416A-4BCB-845E-B4716BC070ED"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "63965972-9801-46C7-9C38-0D921E46462F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.7:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "231A8334-0376-4BF2-96F6-166CB24CA606"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.31:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "F9815445-5C41-4050-8160-61225100024A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.32:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "22C3ED65-9087-4707-8492-2A709F6F5883"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.41:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "0B607B52-23E5-4D2D-86BF-B1AAA5069A1C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.42:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "FF8EF628-B263-4664-908C-796780846B90"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.43:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "F13EDCB8-C485-41DB-9CCF-55B1B7158747"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.51:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "255EB12D-55E3-41F5-9457-3A712B3FC35C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.52:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "ABC75999-BD28-44D1-9E94-574DEF75604C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.53:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C28F63A3-5CF2-4551-9037-251520BC9BF1"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.54:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "243011CB-EAEB-4E8A-9CBC-98F43B708180"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.55:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "A92DF4FA-0D2B-490D-A173-658C7267B707"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.56:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "44F2B794-3F2B-4749-9C63-B96A0DE9EAF5"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.61:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "068C847B-0138-43D1-BB79-4A4ED3475006"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.71:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "CFAD713C-CA6B-40F4-AA9B-656BE30C5352"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.72:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "218E83C5-3F01-4A83-8775-75FA9AAB24FB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.73:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5051DEA3-3192-410D-AEAC-E48CBACB39BF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.74:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "85B87117-A8F6-4337-A30F-AD37332FC05C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.75:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4A41BE60-C5E1-484C-9D75-3CF3701C94FF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.76:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "14EEA2BE-B419-41E0-8C1C-52D43D7A42CF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.77:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "BC5E7302-AFC3-4C3F-836A-B9D868A05935"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.78:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4FE34915-C91D-4CF9-BE43-11822414DAAC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.79:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "70930287-ED2C-4437-840E-48A1DBDB09B3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:deliantra:deliantra:2.80:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "33E96C05-5E8A-4EEA-BFA1-DCE01DBA2715"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://cvs.schmorp.de/deliantra/server/Changes?pathrev=rel-2_82",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://cvs.schmorp.de/deliantra/server/server/c_party.C?r1=1.29&r2=1.30",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Patch"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/37317",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.osvdb.org/59878",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.osvdb.org/59879",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.vupen.com/english/advisories/2009/3176",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54205",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54206",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://cvs.schmorp.de/deliantra/server/Changes?pathrev=rel-2_82",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://cvs.schmorp.de/deliantra/server/server/c_party.C?r1=1.29&r2=1.30",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108",
|
|
"tags": [
|
|
"Patch"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/37317",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.osvdb.org/59878",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.osvdb.org/59879",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.vupen.com/english/advisories/2009/3176",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54205",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54206",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
}
|
|
]
|
|
} |