Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2009-4228

Published: 08/12/2009 Updated: 20/01/2011
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Vulnerability Summary

Stack consumption vulnerability in u_bound.c in Xfig 3.2.5b and previous versions allows remote malicious users to cause a denial of service (application crash) via a long string in a malformed .fig file that uses the 1.3 file format, possibly related to the readfp_fig function in f_read.c.

Vulnerable Product Search on Vulmon Subscribe to Product

xfig xfig

xfig xfig 3.2.5

xfig xfig 3.2.4

References

CWE-399https://bugzilla.redhat.com/show_bug.cgi?id=543905http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559274http://www.vupen.com/english/advisories/2011/0108http://www.mandriva.com/security/advisories?name=MDVSA-2011:010https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2024-5274CVE-2020-17519CVE-2024-35340CVE-2021-47558localXML injectionCVE-2021-47519CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook