← back
CVE-2009-2286

CVE-2009-2286

EPSS 3.1%
Buffer overflow in compface 1.5.2 and earlier allows user-assisted attackers to cause a denial of service (crash) via a long declaration in a .xbm file. NOTE: this issue only affects compface on distributions that used a certain patch.
Affected products
n/a · n/a
public PoCs found2
exploitdbwww.exploit-db.com/exploits/8982unverifiedexploitdbwww.exploit-db.com/exploits/9302unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534973http://www.openwall.com/lists/oss-security/2009/06/29/2http://www.openwall.com/lists/oss-security/2009/06/29/4http://www.openwall.com/lists/oss-security/2009/07/03/1http://www.securityfocus.com/bid/35863