Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2009-3546

EPSS 4.66% · P89
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-3546

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5.3.1, and the GD Graphics Library 2.x, does not properly verify a certain colorsTotal structure member, which might allow remote attackers to conduct buffer overflow or buffer over-read attacks via a crafted GD file, a different vulnerability than CVE-2009-3293. NOTE: some of these details are obtained from third party information.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
GD Graphics Library 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
GD Graphics Library是一个开源代码库,用于程序员动态创建图像。 GD Graphics Library存在缓冲区错误漏洞,该漏洞源于对用户输入验证不足。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2009-3546

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2009-3546

Please Login to view more intelligence information

Same Patch Batch · n/a · 2009-10-19 · 31 CVEs total

CVE-2009-2994Adobe Reader and Acrobat 缓冲区溢出漏洞
CVE-2009-3613Linux kernel 资源管理错误漏洞
CVE-2009-3612Linux kernel 信息泄露漏洞
CVE-2009-3228Linux Kernel 信息泄露漏洞
CVE-2009-2970Uitv uiplayer ActiveX控件缓冲区溢出漏洞
CVE-2006-6404INNOVATION Data Processing FDR/UPSTREAM TCP SYN信息包序列拒绝服务漏洞
CVE-2005-4881linux kernel 填充字段未初始化 内存敏感信息泄露漏洞
CVE-2009-3462Adobe Reader and Acrobat 任意代码执行漏洞
CVE-2009-3461Adobe Reader and Acrobat 文件扩展名限制绕过漏洞
CVE-2009-3460Adobe Reader and Acrobat JavaScript 内存破坏漏洞
CVE-2009-3458Adobe Reader和 Acrobat 输入校验漏洞
CVE-2009-2998Adobe Reader and Acrobat 输入校验漏洞
CVE-2009-2997Adobe Reader and Acrobat 畸形U3D数据 堆内存破坏漏洞
CVE-2009-2996Adobe Reader and Acrobat JavaScript Collab Object 内存破坏漏洞
CVE-2009-2995Adobe Reader and Acrobat 整数溢出漏洞
CVE-2009-2979Adobe Reader and Acrobat XML实体的扩展 拒绝服务漏洞
CVE-2009-2993Adobe Reader和Acrobat 特制PDF文件 任意代码执行漏洞
CVE-2009-2992Adobe Reader和Acrobat 未明ActiveX控件 拒绝服务漏洞
CVE-2009-2991Adobe Acrobat Reader 火狐插件内存破坏远程代码执行漏洞
CVE-2009-2990Adobe Reader 和 Acrobat 数组索引错误漏洞

Showing top 20 of 31 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2009-3546

No comments yet

Leave a comment