CVE-2009-1189
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2009-1189
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The _dbus_validate_signature_with_reason function (dbus-marshal-validate.c) in D-Bus (aka DBus) before 1.2.14 uses incorrect logic to validate a basic type, which allows remote attackers to spoof a signature via a crafted key. NOTE: this is due to an incorrect fix for CVE-2008-3834.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
D-BUS 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
D-BUS是一种消息总线系统,它主要用于进程间通信及远程过程调用等。 D-BUS 1.2.14之前版本存在输入验证错误漏洞,该漏洞源于使用不正确的逻辑来验证基本类型,允许远程攻击者通过制作的密钥欺骗签名。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2009-1189
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2009-1189
Please Login to view more intelligence information
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705x_refsource_CONFIRM
- http://bugs.freedesktop.org/show_bug.cgi?id=17803x_refsource_CONFIRM
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10308vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2009-1189
Same Patch Batch · n/a · 2009-04-27 · 19 CVEs total
| CVE-2009-1446 | Elkagroup Image Gallery 'upload.php'未限制文件上传漏洞 | |
| CVE-2009-1440 | aMule 'src/DownloadListCtrl.cpp'命令注入漏洞 | |
| CVE-2009-1439 | Linux Kernel 'fs/cifs/connect.c'远程溢出漏洞 | |
| CVE-2009-1438 | Konstanty_Bialkowski libmodplug 'src/load_med.cpp'整数溢出漏洞 | |
| CVE-2009-1437 | CoolPlayer M3U文件处理栈溢出漏洞 | |
| CVE-2009-1436 | FreeBSD libc Berkley DB接口未初始化内存本地信息泄露漏洞 | |
| CVE-2009-1435 | Trendmicro趋势科技OfficeScan客户端拒绝服务漏洞 | |
| CVE-2008-6753 | SilverStripe 'AjaxUniqueTextField' 参数 SQL注入漏洞 | |
| CVE-2009-1447 | e-cart 'admin/editor/image.php'未限制文件上传漏洞 | |
| CVE-2008-6755 | ZoneMinder '/etc/zm.conf'权限许可和访问控制漏洞 | |
| CVE-2009-1445 | WebPortal CMS 'libraries/helpdocs/help.php'目录遍历漏洞 | |
| CVE-2009-1444 | WebPortal CMS 'indexk.php'PHP远程文件包含漏洞 | |
| CVE-2009-1443 | OCS Inventory NG服务器组件多个未明漏洞 | |
| CVE-2008-6754 | Mephisteus Personal Sticky Threads vBulletin Addon未授权访问漏洞 | |
| CVE-2009-1449 | CoolPlayer皮肤文件处理缓冲区溢出漏洞 | |
| CVE-2009-1448 | lovpop apricot 'apricot.php'跨站脚本攻击漏洞 | |
| CVE-2009-1190 | Sun Java Development Kit 'java.util.regex.Pattern.compile'算法复杂性漏洞 | |
| CVE-2008-6756 | Zoneminder Gentoo Linux '/etc/zm.conf'权限许可和访问控制漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8252
Open5GS SMF smf_nsmf_handle_create_data_in_hsmf null pointer - CVE-2026-8251
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8250
Open5GS SMF n4-build.c smf_n4_build_qos_flow_to_modify_list - CVE-2026-8249
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8248
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo
V. Comments for CVE-2009-1189
No comments yet