Vulnerability Database

296,202

Total vulnerabilities in the database

CVE-2009-4274

Stack-based buffer overflow in converter/ppm/xpmtoppm.c in netpbm before 10.47.07 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an XPM image file that contains a crafted header field associated with a large color index value.

  • Published: Feb 12, 2010
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-4274
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
netpbm / netpbm 10.35.13 10.35.13.x
netpbm / netpbm 10.28 10.28.x
netpbm / netpbm 10.39.00 10.39.00.x
netpbm / netpbm 10.0 10.0.x
netpbm / netpbm 10.46.00 10.46.00.x
netpbm / netpbm 10.35.44 10.35.44.x
netpbm / netpbm 10.35.11 10.35.11.x
netpbm / netpbm 10.35.32 10.35.32.x
netpbm / netpbm 10.35.20 10.35.20.x
netpbm / netpbm 10.33 10.33.x
netpbm / netpbm 10.35.35 10.35.35.x
netpbm / netpbm 10.35.39 10.35.39.x
netpbm / netpbm 10.7 10.7.x
netpbm / netpbm 10.13 10.13.x
netpbm / netpbm 10.35.18 10.35.18.x
netpbm / netpbm 10.35.06 10.35.06.x
netpbm / netpbm 10.45.00 10.45.00.x
netpbm / netpbm 10.35.08 10.35.08.x
netpbm / netpbm 10.35.19 10.35.19.x
netpbm / netpbm 10.26 10.26.x
netpbm / netpbm 10.38.00 10.38.00.x
netpbm / netpbm 10.42.00 10.42.00.x
netpbm / netpbm 10.35.00 10.35.00.x
netpbm / netpbm 10.35.33 10.35.33.x
netpbm / netpbm 10.12 10.12.x
netpbm / netpbm 10.35.22 10.35.22.x
netpbm / netpbm 10.35.28 10.35.28.x
netpbm / netpbm 10.17 10.17.x
netpbm / netpbm 10.35.15 10.35.15.x
netpbm / netpbm 10.35.29 10.35.29.x
netpbm / netpbm 10.35.16 10.35.16.x
netpbm / netpbm 10.8 10.8.x
netpbm / netpbm 10.47.06 10.47.06.x
netpbm / netpbm 10.2 10.2.x
netpbm / netpbm 10.1 10.1.x
netpbm / netpbm 10.19 10.19.x
netpbm / netpbm 10.35.36 10.35.36.x
netpbm / netpbm 10.32 10.32.x
netpbm / netpbm 10.35.03 10.35.03.x
netpbm / netpbm 10.47.03 10.47.03.x
netpbm / netpbm 10.35.40 10.35.40.x
netpbm / netpbm 10.35.43 10.35.43.x
netpbm / netpbm 10.35.23 10.35.23.x
netpbm / netpbm 10.35.30 10.35.30.x
netpbm / netpbm 10.35.38 10.35.38.x
netpbm / netpbm 10.35.09 10.35.09.x
netpbm / netpbm 10.3 10.3.x
netpbm / netpbm 10.22 10.22.x
netpbm / netpbm 10.35.41 10.35.41.x
netpbm / netpbm 10.11 10.11.x
netpbm / netpbm 10.35.10 10.35.10.x
netpbm / netpbm 10.6 10.6.x
netpbm / netpbm 10.31 10.31.x
netpbm / netpbm 10.35.17 10.35.17.x
netpbm / netpbm 10.29 10.29.x
netpbm / netpbm 10.35.12 10.35.12.x
netpbm / netpbm 10.9 10.9.x
netpbm / netpbm 10.44.00 10.44.00.x
netpbm / netpbm 10.47.04 10.47.04.x
netpbm / netpbm 10.20 10.20.x
netpbm / netpbm 10.27 10.27.x
netpbm / netpbm 10.25 10.25.x
netpbm / netpbm 10.18 10.18.x
netpbm / netpbm 10.23 10.23.x
netpbm / netpbm 10.47.00 10.47.00.x
netpbm / netpbm 10.35.05 10.35.05.x
netpbm / netpbm 10.35.27 10.35.27.x
netpbm / netpbm 10.47.01 10.47.01.x
netpbm / netpbm 10.10 10.10.x
netpbm / netpbm 10.35.46 10.35.46.x
netpbm / netpbm 10.16 10.16.x
netpbm / netpbm 10.43.00 10.43.00.x
netpbm / netpbm 10.35.45 10.35.45.x
netpbm / netpbm 10.36.00 10.36.00.x
netpbm / netpbm 10.35.07 10.35.07.x
netpbm / netpbm 10.35.25 10.35.25.x
netpbm / netpbm 10.40.00 10.40.00.x
netpbm / netpbm 10.30 10.30.x
netpbm / netpbm 10.35.31 10.35.31.x
netpbm / netpbm 10.35.34 10.35.34.x
netpbm / netpbm 10.34 10.34.x
netpbm / netpbm 10.47.05 10.47.05.x
netpbm / netpbm 10.21 10.21.x
netpbm / netpbm 10.14 10.14.x
netpbm / netpbm 10.5 10.5.x
netpbm / netpbm 10.35.02 10.35.02.x
netpbm / netpbm 10.35.24 10.35.24.x
netpbm / netpbm 10.4 10.4.x
netpbm / netpbm 10.35.04 10.35.04.x
netpbm / netpbm 10.24 10.24.x
netpbm / netpbm 10.35.14 10.35.14.x
netpbm / netpbm 10.47.02 10.47.02.x
netpbm / netpbm 10.37.00 10.37.00.x
netpbm / netpbm 10.35.37 10.35.37.x
netpbm / netpbm 10.15 10.15.x
netpbm / netpbm 10.35.21 10.35.21.x
netpbm / netpbm 10.35.26 10.35.26.x
netpbm / netpbm 10.41.00 10.41.00.x
netpbm / netpbm 10.35.47 10.35.47.x
netpbm / netpbm 10.35.01 10.35.01.x
netpbm / netpbm 10.35.42 10.35.42.x