← back
CVE-2009-3476

CVE-2009-3476

EPSS 4.1%
Buffer overflow in OpenSAML before 1.1.3 as used in Internet2 Shibboleth Service Provider software 1.3.x before 1.3.4, and XMLTooling before 1.2.2 as used in Internet2 Shibboleth Service Provider software 2.x before 2.2.1, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed encoded URL.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/36869http://secunia.com/advisories/36870https://exchange.xforce.ibmcloud.com/vulnerabilities/53471http://shibboleth.internet2.edu/secadv/secadv_20090826.txthttp://www.securityfocus.com/bid/36514