Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-1415

CWE-8246 documents6 sources
Severity
4.3MEDIUM
EPSS
17.8%
top 4.88%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
GNU Gnutls
Timeline
PublishedApr 30
Latest updateMay 2

Description

lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA signatures, which allows remote attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a malformed DSA key that triggers a (1) free of an uninitialized pointer or (2) double free.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDgnu/gnutls< 2.6.6

Patches

Patch: article.gmane.orgPatch: article.gmane.org

🔴Vulnerability Details

2
GHSA
GHSA-2vg6-3mr6-w5mp: lib/pk-libgcrypt2022-05-02
CVEList
CVE-2009-1415: lib/pk-libgcrypt2009-04-30

💥Exploits & PoCs

1
Exploit-DB
GnuTLS 2.6.x - libgnutls lib/pk-libgcrypt.c Malformed DSA Key Handling Remote Denial of Service2009-04-30

📋Vendor Advisories

1
Red Hat
gnutls: Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1]2009-04-30

💬Community

1
Bugzilla
CVE-2009-1415 gnutls: Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1]2009-04-30
CVE-2009-1415 (MEDIUM CVSS 4.3) | lib/pk-libgcrypt.c in libgnutls in | cvebase.io