CVE-2009-2663
published 2009-08-04CVE-2009-2663: libvorbis before r16182, as used in Mozilla Firefox 3.5.x before 3.5.2 and other products, allows context-dependent attackers to cause a denial of service…
PriorityP431critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
2.71%
84.2th percentile
libvorbis before r16182, as used in Mozilla Firefox 3.5.x before 3.5.2 and other products, allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .ogg file.
Affected
109 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libvorbis | < libvorbis 1.2.0.dfsg-6 (bookworm) | libvorbis 1.2.0.dfsg-6 (bookworm) |
| debian | libvorbis | < libvorbis 1.2.3-1 (bookworm) | libvorbis 1.2.3-1 (bookworm) |
| debian | libvorbisidec | < libvorbis 1.2.0.dfsg-6 (bookworm) | libvorbis 1.2.0.dfsg-6 (bookworm) |
| debian | libvorbisidec | < libvorbis 1.2.3-1 (bookworm) | libvorbis 1.2.3-1 (bookworm) |
| mozilla | firefox | <= 3.5.1 | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL
vendor_debian9.3MEDIUM
vendor_redhat9.3CRITICAL
vendor_ubuntu6.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-r52r-p4hh-9m3j: libvorbis before r16182, as used in Mozilla Firefox 3
ghsa_unreviewed·2022-05-02
CVE-2009-2663 [HIGH] GHSA-r52r-p4hh-9m3j: libvorbis before r16182, as used in Mozilla Firefox 3
libvorbis before r16182, as used in Mozilla Firefox 3.5.x before 3.5.2 and other products, allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .ogg file.
GHSA
GHSA-f7fv-7rmr-mpcf: Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3
ghsa_unreviewed·2022-05-02·CVSS 9.3
CVE-2009-3379 [CRITICAL] GHSA-f7fv-7rmr-mpcf: Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3
Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3.5.x before 3.5.4, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors. NOTE: this might overlap CVE-2009-2663.
OSV
CVE-2009-3379: Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3
osv·2009-10-29·CVSS 9.3
CVE-2009-3379 [CRITICAL] CVE-2009-3379: Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3
Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3.5.x before 3.5.4, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors. NOTE: this might overlap CVE-2009-2663.
OSV
CVE-2009-2663: libvorbis before r16182, as used in Mozilla Firefox 3
osv·2009-08-04·CVSS 9.3
CVE-2009-2663 [CRITICAL] CVE-2009-2663: libvorbis before r16182, as used in Mozilla Firefox 3
libvorbis before r16182, as used in Mozilla Firefox 3.5.x before 3.5.2 and other products, allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .ogg file.
Red Hat
libvorbis: security fixes mentioned in MFSA 2009-63
vendor_redhat·2009-10-27·CVSS 9.3
CVE-2009-3379 [CRITICAL] libvorbis: security fixes mentioned in MFSA 2009-63
libvorbis: security fixes mentioned in MFSA 2009-63
Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3.5.x before 3.5.4, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors. NOTE: this might overlap CVE-2009-2663.
Ubuntu
libvorbis vulnerability
vendor_ubuntu·2009-08-24·CVSS 6.8
CVE-2008-1420 [MEDIUM] libvorbis vulnerability
Title: libvorbis vulnerability
Summary: libvorbis vulnerability
It was discovered that libvorbis did not correctly handle certain malformed
ogg files. If a user were tricked into opening a specially crafted ogg file
with an application that uses libvorbis, an attacker could execute
arbitrary code with the user's privileges. (CVE-2009-2663)
USN-682-1 provided updated libvorbis packages to fix multiple security
vulnerabilities. The upstream security patch to fix CVE-2008-1420
introduced a regression when reading sound files encoded with libvorbis
1.0beta1. This update corrects the problem.
Original advisory details:
It was discovered that libvorbis did not correctly handle certain
malformed sound files. If a user were tricked into opening a specially
crafted sound file with an applicati
Red Hat
libvorbis: Improper codec headers processing (DoS, ACE)
vendor_redhat·2009-06-24·CVSS 9.3
CVE-2009-2663 [CRITICAL] libvorbis: Improper codec headers processing (DoS, ACE)
libvorbis: Improper codec headers processing (DoS, ACE)
libvorbis before r16182, as used in Mozilla Firefox 3.5.x before 3.5.2 and other products, allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .ogg file.
Debian
CVE-2009-2663: libvorbis - libvorbis before r16182, as used in Mozilla Firefox 3.5.x before 3.5.2 and other...
vendor_debian·2009·CVSS 9.3
CVE-2009-2663 [CRITICAL] CVE-2009-2663: libvorbis - libvorbis before r16182, as used in Mozilla Firefox 3.5.x before 3.5.2 and other...
libvorbis before r16182, as used in Mozilla Firefox 3.5.x before 3.5.2 and other products, allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .ogg file.
Scope: local
bookworm: resolved (fixed in 1.2.0.dfsg-6)
bullseye: resolved (fixed in 1.2.0.dfsg-6)
forky: resolved (fixed in 1.2.0.dfsg-6)
sid: resolved (fixed in 1.2.0.dfsg-6)
trixie: resolved (fixed in 1.2.0.dfsg-6)
Debian
CVE-2009-3379: libvorbis - Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3....
vendor_debian·2009·CVSS 9.3
CVE-2009-3379 [CRITICAL] CVE-2009-3379: libvorbis - Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3....
Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3.5.x before 3.5.4, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors. NOTE: this might overlap CVE-2009-2663.
Scope: local
bookworm: resolved (fixed in 1.2.3-1)
bullseye: resolved (fixed in 1.2.3-1)
forky: resolved (fixed in 1.2.3-1)
sid: resolved (fixed in 1.2.3-1)
trixie: resolved (fixed in 1.2.3-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2009-3379 libvorbis: security fixes mentioned in MFSA 2009-63
bugzilla·2009-10-29·CVSS 9.3
CVE-2009-3379 [CRITICAL] CVE-2009-3379 libvorbis: security fixes mentioned in MFSA 2009-63
CVE-2009-3379 libvorbis: security fixes mentioned in MFSA 2009-63
Quoting Mozilla Foundation Security Advisory 2009-63:
http://www.mozilla.org/security/announce/2009/mfsa2009-63.html
Lucas Adamski, Matthew Gregan, David Keeler, and Dan Kaminsky reported
crashes in libvorbis.
Advisory provides following bug list:
https://bugzilla.mozilla.org/buglist.cgi?bug_id=501279,499512,500254,515889,507167
with only 500254 being public at the moment.
Discussion:
https://bugzilla.mozilla.org/show_bug.cgi?id=500254
reported by Lucas Adamski
This issue is already known as CVE-2009-2663 (bug #516259). It was first fixed in Firefox 3.5.2 / 1.9.1.2 via:
http://www.mozilla.org/security/announce/2009/mfsa2009-45.html
(part of the "Browser crashes - Firefox 3.5"). Not sure why Mozilla upstream is men
Bugzilla
CVE-2009-2663 libvorbis: Improper codec headers processing (DoS, ACE)
bugzilla·2009-08-07·CVSS 9.3
CVE-2009-2663 [CRITICAL] CVE-2009-2663 libvorbis: Improper codec headers processing (DoS, ACE)
CVE-2009-2663 libvorbis: Improper codec headers processing (DoS, ACE)
An insufficient input validation flaw was found in the way libvorbis
used to process codec file headers (static mode headers and encoding
books) for the Ogg Vorbis audio file format (Ogg). A remote attacker
could provide a specially-crafted Ogg file, which would lead to
denial of service (memory corruption and application crash) or,
potentially execute arbitrary code with the privileges of the application
using the libvorbis library, when opened by the victim.
References:
https://bugzilla.mozilla.org/show_bug.cgi?id=500254
http://bugs.gentoo.org/280393
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2663
Reproducer:
https://bugzilla.mozilla.org/attachment.cgi?id=384979
Discussion:
Created attachment 356685
http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.htmlhttp://secunia.com/advisories/36126http://secunia.com/advisories/36230http://secunia.com/advisories/36263http://secunia.com/advisories/36463http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1http://www.mozilla.org/security/announce/2009/mfsa2009-45.htmlhttp://www.securityfocus.com/bid/35927http://www.securityfocus.com/bid/36018http://www.vupen.com/english/advisories/2009/2142http://www.vupen.com/english/advisories/2009/2223https://bugzilla.mozilla.org/show_bug.cgi?id=500254https://bugzilla.redhat.com/show_bug.cgi?id=516259https://exchange.xforce.ibmcloud.com/vulnerabilities/52397https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9506https://usn.ubuntu.com/825-1/https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00198.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-August/msg00261.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-August/msg00481.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.htmlhttp://secunia.com/advisories/36126http://secunia.com/advisories/36230http://secunia.com/advisories/36263http://secunia.com/advisories/36463http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1http://www.mozilla.org/security/announce/2009/mfsa2009-45.htmlhttp://www.securityfocus.com/bid/35927http://www.securityfocus.com/bid/36018http://www.vupen.com/english/advisories/2009/2142http://www.vupen.com/english/advisories/2009/2223https://bugzilla.mozilla.org/show_bug.cgi?id=500254https://bugzilla.redhat.com/show_bug.cgi?id=516259https://exchange.xforce.ibmcloud.com/vulnerabilities/52397https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9506https://usn.ubuntu.com/825-1/https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00198.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-August/msg00261.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-August/msg00481.html
2009-08-04
Published