CVE-2009-3575

Buffer overflow in DHTRoutingTableDeserializer.cc in aria2 0.15.3, 1.2.0, and other versions allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
VendorProductVersion
tatsuhiro_tsujikawaaria2
0.15.3
tatsuhiro_tsujikawaaria2
1.2.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
aria2
bullseye
1.35.0-3
fixed
etch
not-affected
bookworm
1.36.0-1
fixed
sid
1.37.0+debian-2
fixed
trixie
1.37.0+debian-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
aria2
bionic
not-affected
artful
ignored
zesty
ignored
yakkety
ignored
xenial
not-affected
wily
ignored
vivid
ignored
utopic
ignored
trusty
not-affected
saucy
ignored
raring
ignored
quantal
ignored
precise
ignored
oneiric
ignored
natty
ignored
maverick
ignored
lucid
ignored
karmic
ignored
jaunty
ignored
intrepid
ignored
hardy
ignored
dapper
dne
References
http://secunia.com/advisories/37971
http://www.debian.org/security/2009/dsa-1957
http://www.mandriva.com/security/advisories?name=MDVSA-2009:226
http://www.securityfocus.com/bid/36332
https://qa.mandriva.com/show_bug.cgi?id=52840
http://secunia.com/advisories/37971
http://www.debian.org/security/2009/dsa-1957
http://www.mandriva.com/security/advisories?name=MDVSA-2009:226
http://www.securityfocus.com/bid/36332
https://qa.mandriva.com/show_bug.cgi?id=52840