CVE-2009-2483

CVE-2009-2483

EPSS 0.4%

libprop/prop_object.c in proplib in NetBSD 4.0 and 4.0.1 allows local users to cause a denial of service (NULL pointer dereference and kernel panic) via a malformed externalized plist (XML form) containing an undefined element.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-003.txt.asc http://osvdb.org/55285 http://secunia.com/advisories/35556 https://exchange.xforce.ibmcloud.com/vulnerabilities/51311 http://www.securityfocus.com/bid/35466 http://www.securitytracker.com/id?1022431