CVE-2009-2807Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple MAC OS X

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents7 sources
Severity
7.2HIGHNVD
EPSS
0.1%
top 79.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple MAC OS X Server
Timeline
PublishedSep 14
Latest updateMay 2

Description

Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDapple/mac_os_x10.5.8

Patches

Patch: lists.apple.comPatch: support.apple.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-9vjx-w5p4-4vg6: Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 102022-05-02
CVEList
CVE-2009-2807: Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 102009-09-14

💥Exploits & PoCs

1
Exploit-DB
Eggdrop/Windrop 1.6.19 - ctcpbuf Remote Crash2009-05-15

📋Vendor Advisories

2
Red Hat
eggdrop DoS (crash)2009-05-26
Debian
CVE-2009-2807: cups - Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 a...2009

💬Community

1
Bugzilla
CVE-2009-1789 eggdrop DoS (crash)2009-05-26
CVE-2009-2807 — Apple MAC OS X vulnerability | cvebase