Details of VAR-200907-0445

ID

VAR-200907-0445

CVE

CVE-2009-2540

TITLE

Opera Service operation interruption in (DoS) Vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2009-002558

DESCRIPTION

Opera, possibly 9.64 and earlier, allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692. Opera for, Select of the object length Disruption of service due to flaws in property-related processing (DoS) There is a vulnerability that could result in a condition. Browsers from multiple vendors are prone to a denial-of-service vulnerability. Successfully exploiting this issue may allow attackers to crash an affected application. NOTE: This issue was previously covered in BID 35414 (Apple iPhone and iPod touch Prior to Version 3.0 Multiple Vulnerabilities), but has been assigned its own record to better document it

Trust: 1.89

sources: NVD: CVE-2009-2540 // JVNDB: JVNDB-2009-002558 // BID: 35446

AFFECTED PRODUCTS

vendor:	opera	model:	browser	scope:	lte	version:	9.64	Trust: 1.0
vendor:	opera asa	model:	opera	scope:	eq	version:	-	Trust: 0.8
vendor:	opera asa	model:	opera	scope:	lte	version:	9.64 and earlier	Trust: 0.8
vendor:	opera	model:	browser	scope:	eq	version:	9.02	Trust: 0.6
vendor:	opera	model:	browser	scope:	eq	version:	9.22	Trust: 0.6
vendor:	opera	model:	browser	scope:	eq	version:	9.64	Trust: 0.6
vendor:	opera	model:	browser	scope:	eq	version:	9.01	Trust: 0.6
vendor:	opera	model:	browser	scope:	eq	version:	9.12	Trust: 0.6
vendor:	opera	model:	browser	scope:	eq	version:	8.52	Trust: 0.6
vendor:	opera	model:	browser	scope:	eq	version:	8.0	Trust: 0.6
vendor:	opera	model:	browser	scope:	eq	version:	9.20	Trust: 0.6
vendor:	opera	model:	browser	scope:	eq	version:	8.53	Trust: 0.6
vendor:	opera	model:	browser	scope:	eq	version:	9.0	Trust: 0.6
vendor:	webkit	model:	open source project webkit	scope:	eq	version:	0	Trust: 0.3
vendor:	sony	model:	playstation	scope:	eq	version:	30	Trust: 0.3
vendor:	research	model:	in motion blackberry	scope:	eq	version:	88004.2	Trust: 0.3
vendor:	research	model:	in motion blackberry	scope:	eq	version:	88004.1	Trust: 0.3
vendor:	pardus	model:	linux	scope:	eq	version:	20080	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.63	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.62	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.61	Trust: 0.3
vendor:	opera	model:	software opera web browser beta	scope:	eq	version:	9.601	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.60	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.52	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.51	Trust: 0.3
vendor:	opera	model:	software opera web browser beta	scope:	eq	version:	9.50	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.5	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.27	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.26	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.25	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.24	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.23	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.22	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.21	Trust: 0.3
vendor:	opera	model:	software opera web browser beta	scope:	eq	version:	9.201	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.20	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.10	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.02	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9.01	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	eq	version:	9	Trust: 0.3
vendor:	nokia	model:	n95 phone	scope:	eq	version:	0	Trust: 0.3
vendor:	nokia	model:	n82	scope:	eq	version:	0	Trust: 0.3
vendor:	nokia	model:	n810	scope:	eq	version:	0	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	8.0.3.3	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	8.0.3.1	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	8.0.2	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	8.0.1	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	8.0	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	7.2	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	7.1	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	7.0	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	6.2.3	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	6.2.1	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	6.2	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	6.1	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	6.01	Trust: 0.3
vendor:	netscape	model:	mac	scope:	eq	version:	6.0	Trust: 0.3
vendor:	netscape	model:	netscape	scope:	eq	version:	6.0	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	3.0.4	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	3.0.3	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	3.0.2	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	3.0.1	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.9	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.8	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.7	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.6	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.5	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.4	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.3	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.17	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.16	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.10	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.1	Trust: 0.3
vendor:	mozilla	model:	firefox beta	scope:	eq	version:	3.05	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	3.0	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.0.2	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.0.15	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.0.14	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.0.13	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.0.12	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0.0.11	Trust: 0.3
vendor:	mozilla	model:	firefox rc3	scope:	eq	version:	2.0	Trust: 0.3
vendor:	mozilla	model:	firefox rc2	scope:	eq	version:	2.0	Trust: 0.3
vendor:	mozilla	model:	firefox beta	scope:	eq	version:	2.01	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	eq	version:	2.0	Trust: 0.3
vendor:	midbrowser	model:	midbrowser	scope:	eq	version:	0	Trust: 0.3
vendor:	microsoft	model:	internet explorer sp4	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	microsoft	model:	internet explorer sp3	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	microsoft	model:	internet explorer sp2	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	microsoft	model:	internet explorer sp1	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	microsoft	model:	internet explorer rc1	scope:	eq	version:	8	Trust: 0.3
vendor:	microsoft	model:	internet explorer beta	scope:	eq	version:	82	Trust: 0.3
vendor:	microsoft	model:	internet explorer beta	scope:	eq	version:	81	Trust: 0.3
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	8	Trust: 0.3
vendor:	microsoft	model:	internet explorer beta3	scope:	eq	version:	7.0	Trust: 0.3
vendor:	microsoft	model:	internet explorer beta2	scope:	eq	version:	7.0	Trust: 0.3
vendor:	microsoft	model:	internet explorer beta1	scope:	eq	version:	7.0	Trust: 0.3
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	7.0	Trust: 0.3
vendor:	microsoft	model:	internet explorer sp1	scope:	eq	version:	6.0	Trust: 0.3
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	6.0	Trust: 0.3
vendor:	microsoft	model:	internet explorer sp2	scope:	eq	version:	5.5	Trust: 0.3
vendor:	microsoft	model:	internet explorer sp1	scope:	eq	version:	5.5	Trust: 0.3
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	5.5	Trust: 0.3
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	5.0	Trust: 0.3
vendor:	mandriva	model:	linux mandrake x86 64	scope:	eq	version:	2010.0	Trust: 0.3
vendor:	mandriva	model:	linux mandrake	scope:	eq	version:	2010.0	Trust: 0.3
vendor:	mandriva	model:	linux mandrake x86 64	scope:	eq	version:	2009.1	Trust: 0.3
vendor:	mandriva	model:	linux mandrake	scope:	eq	version:	2009.1	Trust: 0.3
vendor:	mandriva	model:	linux mandrake x86 64	scope:	eq	version:	2008.0	Trust: 0.3
vendor:	mandriva	model:	linux mandrake	scope:	eq	version:	2008.0	Trust: 0.3
vendor:	mandrakesoft	model:	corporate server x86 64	scope:	eq	version:	4.0	Trust: 0.3
vendor:	mandrakesoft	model:	corporate server	scope:	eq	version:	4.0	Trust: 0.3
vendor:	kde	model:	konqueror embedded	scope:	eq	version:	0.1	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.95	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.5.9	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.5.7	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.5.6	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.5.5	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.5.2	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.5.1	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.3.2	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.3.1	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.3	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.2.3	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.2.2-6	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.2.1	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.1.5	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.1.4	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.1.3	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.1.2	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.1.1	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.1	Trust: 0.3
vendor:	kde	model:	konqueror b	scope:	eq	version:	3.0.5	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.0.5	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.0.3	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.0.2	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.0.1	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	3.0	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	2.2.2	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	2.2.1	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	2.1.2	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	2.1.1	Trust: 0.3
vendor:	kde	model:	konqueror	scope:	eq	version:	4.1	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	2.0.172.33	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	2.0.172.31	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	2.0.172.30	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	1.0.154.61	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	0.3.1549	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	0.2.149.30	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	0.2.149.29	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	0.2.149.27	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	1.0.154.65	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	1.0.154.64	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	1.0.154.59	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	1.0.154.55	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	1.0.154.53	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	1.0.154.48	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	1.0.154.46	Trust: 0.3
vendor:	google	model:	chrome	scope:	eq	version:	1.0.154.36	Trust: 0.3
vendor:	debian	model:	linux sparc	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux s/390	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux powerpc	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux mipsel	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux mips	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux m68k	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux ia-64	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux ia-32	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux hppa	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux armel	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux arm	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux amd64	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux alpha	scope:	eq	version:	5.0	Trust: 0.3
vendor:	debian	model:	linux	scope:	eq	version:	5.0	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.2.1	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.0.2	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.0.1	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	1.1.4	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	1.1.3	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	1.1.2	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	1.1.1	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.2	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.1	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	2.0	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	1.1	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	2.2.1	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	2.0.2	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	2.0.1	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	1.1.4	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	1.1.3	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	1.1.2	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	1.1.1	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	1.0.2	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	1.0.1	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	2.2	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	2.1	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	2.0	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	1.1	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	1	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	0	Trust: 0.3
vendor:	aigo	model:	p8860	scope:	eq	version:	0	Trust: 0.3
vendor:	opera	model:	software opera web browser	scope:	ne	version:	9.64	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	ne	version:	3.0.5	Trust: 0.3
vendor:	mozilla	model:	firefox	scope:	ne	version:	2.0.19	Trust: 0.3
vendor:	google	model:	chrome	scope:	ne	version:	2.0.172.37	Trust: 0.3
vendor:	apple	model:	ipod touch	scope:	ne	version:	3.0	Trust: 0.3
vendor:	apple	model:	iphone	scope:	ne	version:	3.0	Trust: 0.3

sources: BID: 35446 // JVNDB: JVNDB-2009-002558 // CNNVD: CNNVD-200907-291 // NVD: CVE-2009-2540

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2009-2540
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2009-2540
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-200907-291
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2009-2540
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8

sources: JVNDB: JVNDB-2009-002558 // CNNVD: CNNVD-200907-291 // NVD: CVE-2009-2540

PROBLEMTYPE DATA

problemtype:	CWE-770	Trust: 1.0
problemtype:	Allocation of resources without limits or throttling (CWE-770) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2009-002558 // NVD: CVE-2009-2540

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200907-291

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-200907-291

PATCH

title:

Top Page

url:

http://www.opera.com/

Trust: 0.8

sources: JVNDB: JVNDB-2009-002558

EXTERNAL IDS

db:	NVD	id:	CVE-2009-2540	Trust: 3.5
db:	EXPLOIT-DB	id:	9160	Trust: 1.6
db:	XF	id:	52874	Trust: 1.4
db:	JVNDB	id:	JVNDB-2009-002558	Trust: 0.8
db:	BUGTRAQ	id:	20090715 [GSEC-TZO-44-2009] ONE BUG TO RULE THEM ALL - FIREFOX, IE, SAFARI,OPERA, CHROME,SEAMONKEY,IPHONE,IPOD,WII,PS3....	Trust: 0.6
db:	BUGTRAQ	id:	20090715 RE: [GSEC-TZO-44-2009] ONE BUG TO RULE THEM ALL - FIREFOX, IE, SAFARI,OPERA, CHROME,SEAMONKEY,IPHONE,IPOD,WII,PS3....	Trust: 0.6
db:	BUGTRAQ	id:	20090715 RE:[GSEC-TZO-44-2009] ONE BUG TO RULE THEM ALL - FIREFOX, IE, SAFARI,OPERA, CHROME,SEAMONKEY,IPHONE,IPOD,WII,PS3....	Trust: 0.6
db:	BUGTRAQ	id:	20090716 RE[2]: [GSEC-TZO-44-2009] ONE BUG TO RULE THEM ALL - FIREFOX, IE, SAFARI,OPERA, CHROME,SEAMONKEY,IPHONE,IPOD,WII,PS3....	Trust: 0.6
db:	MILW0RM	id:	9160	Trust: 0.6
db:	CNNVD	id:	CNNVD-200907-291	Trust: 0.6
db:	BID	id:	35446	Trust: 0.3

sources: BID: 35446 // JVNDB: JVNDB-2009-002558 // CNNVD: CNNVD-200907-291 // NVD: CVE-2009-2540

REFERENCES

url:	http://www.g-sec.lu/one-bug-to-rule-them-all.html	Trust: 1.9
url:	http://xforce.iss.net/xforce/xfdb/52874	Trust: 1.4
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5957	Trust: 1.0
url:	http://www.securityfocus.com/archive/1/504969/100/0/threaded	Trust: 1.0
url:	http://www.securityfocus.com/archive/1/504988/100/0/threaded	Trust: 1.0
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/52874	Trust: 1.0
url:	http://www.securityfocus.com/archive/1/505006/100/0/threaded	Trust: 1.0
url:	http://www.securityfocus.com/archive/1/504989/100/0/threaded	Trust: 1.0
url:	http://www.exploit-db.com/exploits/9160	Trust: 1.0
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2009-2540	Trust: 0.8
url:	http://www.securityfocus.com/archive/1/archive/1/505006/100/0/threaded	Trust: 0.6
url:	http://www.securityfocus.com/archive/1/archive/1/504989/100/0/threaded	Trust: 0.6
url:	http://www.securityfocus.com/archive/1/archive/1/504988/100/0/threaded	Trust: 0.6
url:	http://www.securityfocus.com/archive/1/archive/1/504969/100/0/threaded	Trust: 0.6
url:	http://www.milw0rm.com/exploits/9160	Trust: 0.6
url:	http://support.apple.com/kb/ht3639	Trust: 0.3
url:	http://www.apple.com/iphone/	Trust: 0.3
url:	http://www.apple.com/ipodtouch/	Trust: 0.3
url:	http://www.mandriva.com/en/security/advisories?name=mdvsa-2009:346	Trust: 0.3

sources: BID: 35446 // JVNDB: JVNDB-2009-002558 // CNNVD: CNNVD-200907-291 // NVD: CVE-2009-2540

CREDITS

Oskar Lissheim-BoethiusOliver QuasChristian Schmitz

Trust: 0.6

sources: CNNVD: CNNVD-200907-291

SOURCES

db:	BID	id:	35446
db:	JVNDB	id:	JVNDB-2009-002558
db:	CNNVD	id:	CNNVD-200907-291
db:	NVD	id:	CVE-2009-2540

LAST UPDATE DATE

2024-11-23T19:27:21.428000+00:00

SOURCES UPDATE DATE

db:	BID	id:	35446	date:	2015-03-19T08:42:00
db:	JVNDB	id:	JVNDB-2009-002558	date:	2024-02-27T06:53:00
db:	CNNVD	id:	CNNVD-200907-291	date:	2009-09-04T00:00:00
db:	NVD	id:	CVE-2009-2540	date:	2024-11-21T01:05:07.123

SOURCES RELEASE DATE

db:	BID	id:	35446	date:	2009-06-17T00:00:00
db:	JVNDB	id:	JVNDB-2009-002558	date:	2010-09-27T00:00:00
db:	CNNVD	id:	CNNVD-200907-291	date:	2009-06-17T00:00:00
db:	NVD	id:	CVE-2009-2540	date:	2009-07-20T18:30:01.233