CVE-2009-1169
Public Exploits 1
ExploitDB · 1 EDB-8285 [dos]
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2009-1169
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The txMozillaXSLTProcessor::TransformToDoc function in Mozilla Firefox before 3.0.8 and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XML file with a crafted XSLT transform.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Mozilla Firefox XSL解析root XML标签内存破坏漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Firefox是一款非常流行的开放源码WEB浏览器。 Firefox在转换XML文档时没有正确地处理出错情况,特制的XSLT代码可能导致将临时的被破坏栈变量处理为评估上下文对象。漏洞的起因是evalContext是栈分配的,但在失败的情况下仍被txExecutionState对象引用,该对象的释放器之后又试图删除evalContext。成功利用这个漏洞的攻击者可能导致浏览器崩溃或在用户机器上执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2009-1169
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2009-1169
请登录查看更多情报信息。
- http://www.mozilla.org/security/announce/2009/mfsa2009-12.htmlx_refsource_CONFIRM
- https://bugzilla.mozilla.org/show_bug.cgi?id=485286x_refsource_CONFIRM
- http://support.avaya.com/elmodocs2/security/ASA-2009-113.htmx_refsource_CONFIRM
- http://blogs.zdnet.com/security/?p=3013x_refsource_MISC
- https://bugzilla.mozilla.org/show_bug.cgi?id=460090x_refsource_CONFIRM
- https://bugzilla.mozilla.org/show_bug.cgi?id=485217x_refsource_CONFIRM
- https://www.redhat.com/archives/fedora-package-announce/2009-March/msg01023.htmlvendor-advisoryx_refsource_FEDORA
- https://www.redhat.com/archives/fedora-package-announce/2009-March/msg01040.htmlvendor-advisoryx_refsource_FEDORA
- https://www.redhat.com/archives/fedora-package-announce/2009-March/msg01077.htmlvendor-advisoryx_refsource_FEDORA
- http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00008.htmlvendor-advisoryx_refsource_SUSE
- http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00009.htmlvendor-advisoryx_refsource_SUSE
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11372vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2009-1169
Same Patch Batch · n/a · 2009-03-27 · 15 CVEs total
| CVE-2009-0590 | OpenSSL 缓冲区错误漏洞 | |
| CVE-2009-0591 | OpenSSL 授权问题漏洞 | |
| CVE-2009-0626 | Cisco IOS WebVPN/SSLVPN HTTPS报文 远程拒绝服务漏洞 | |
| CVE-2009-0628 | Cisco IOS WebVPN/SSLVPN 内存泄露漏洞 | |
| CVE-2009-0629 | Cisco IOS 安全漏洞 | |
| CVE-2009-0630 | Cisco IOS多个功能IP套接字拒绝服务漏洞 | |
| CVE-2009-0633 | Cisco IOS移动IP/移动IPv6功能多个远程拒绝服务漏洞 | |
| CVE-2009-0634 | Cisco IOS移动IP/移动IPv6功能 HA功能多个远程拒绝服务漏洞 | |
| CVE-2009-0635 | Cisco IOS cTCP协议远程拒绝服务漏洞 | |
| CVE-2009-0636 | Cisco IOS会话初始协议拒绝服务漏洞 | |
| CVE-2009-0637 | Cisco IOS 权限许可和访问控制问题漏洞 | |
| CVE-2009-0789 | OpenSSL 数字错误漏洞 | |
| CVE-2009-0845 | MIT Kerberos NegTokenInit令牌处理远程拒绝服务漏洞 | |
| CVE-2009-0631 | Cisco IOS多个功能UDP报文拒绝服务漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8741
EMQX QoS 2 PUBLISH Packet emqx_persistent_session_ds.erl rac - CVE-2026-8731
Open5GS NRF client.c ogs_sbi_client_add denial of service - CVE-2026-8730
Open5GS NRF context.c ogs_sbi_nf_instance_set_id denial of s - CVE-2026-8729
Open5GS NRF message.c denial of service - CVE-2026-8728
Open5GS NRF conv.c ogs_sbi_discovery_option_parse_plmn_list
V. Comments for CVE-2009-1169
No comments yet