CVE-2009-3930

Multiple integer overflows in Christos Zoulas file before 5.02 allow user-assisted remote attackers to have an unspecified impact via a malformed compound document (aka cdf) file that triggers a buffer overflow.

Published: Nov 10, 2009
Updated: Nov 9, 2025
CVE: CVE-2009-3930
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-189

Affected Software
References

Software	From	Fixed in
christos_zoulas / file	5.00	5.00.x
christos_zoulas / file	4.19	4.19.x
christos_zoulas / file	4.08	4.08.x
christos_zoulas / file	3.32	3.32.x
christos_zoulas / file	4.04	4.04.x
christos_zoulas / file	3.41	3.41.x
christos_zoulas / file	4.26	4.26.x
christos_zoulas / file	4.02	4.02.x
christos_zoulas / file	4.17	4.17.x
christos_zoulas / file	4.11	4.11.x
christos_zoulas / file	3.34	3.34.x
christos_zoulas / file	3.38	3.38.x
christos_zoulas / file	3.39	3.39.x
christos_zoulas / file	4.03	4.03.x
christos_zoulas / file	4.06	4.06.x
christos_zoulas / file	4.20	4.20.x
christos_zoulas / file	4.09	4.09.x
christos_zoulas / file	3.37	3.37.x
christos_zoulas / file	4.14	4.14.x
christos_zoulas / file	4.13	4.13.x
christos_zoulas / file	3.40	3.40.x
christos_zoulas / file	4.23	4.23.x
christos_zoulas / file	4.15	4.15.x
christos_zoulas / file	3.31	3.31.x
christos_zoulas / file	4.01	4.01.x
christos_zoulas / file	4.25	4.25.x
christos_zoulas / file	4.16	4.16.x
christos_zoulas / file	3.33	3.33.x
christos_zoulas / file	4.21	4.21.x
christos_zoulas / file	4.07	4.07.x
christos_zoulas / file	-	5.01.x
christos_zoulas / file	3.30	3.30.x
christos_zoulas / file	3.36	3.36.x
christos_zoulas / file	4.24	4.24.x
christos_zoulas / file	4.12	4.12.x

Vulnerability Database

309,961

CVE-2009-3930

Deep Security Visibility Without the Complexity