What is the severity of CVE-2009-0585?

CVE-2009-0585 is classified as a high severity vulnerability due to its potential to allow arbitrary code execution.

How do I fix CVE-2009-0585?

To fix CVE-2009-0585, upgrade libsoup to version 2.22 or later to mitigate the integer overflow issue.

What versions are affected by CVE-2009-0585?

CVE-2009-0585 affects libsoup versions 2.1, 2.23.1 to 2.23.92, and any version before 2.2 and 2.24.

Is CVE-2009-0585 a remote exploit?

CVE-2009-0585 is considered a local exploit, where an attacker must be able to provide input to the vulnerable function.

Vulnerability/
CVE-2009-0585

high

7.5

CWE

189 190

14/3/2009

13/2/2023

CVE-2009-0585: Integer Overflow

First published: Sat Mar 14 2009(Updated: )

Integer overflow in the soup_base64_encode function in soup-misc.c in libsoup 2.x.x before 2.2.x, and 2.x before 2.24, allows context-dependent attackers to execute arbitrary code via a long string that is converted to a base64 representation.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
libsoup	=2.23.6
libsoup	=2.1
libsoup	=2.23.92
libsoup	=2.23.91
libsoup	=2.23.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-0585?
CVE-2009-0585 is classified as a high severity vulnerability due to its potential to allow arbitrary code execution.
How do I fix CVE-2009-0585?
To fix CVE-2009-0585, upgrade libsoup to version 2.22 or later to mitigate the integer overflow issue.
What versions are affected by CVE-2009-0585?
CVE-2009-0585 affects libsoup versions 2.1, 2.23.1 to 2.23.92, and any version before 2.2 and 2.24.
What type of attack does CVE-2009-0585 allow?
CVE-2009-0585 allows context-dependent attackers to execute arbitrary code through crafted base64 input.
Is CVE-2009-0585 a remote exploit?
CVE-2009-0585 is considered a local exploit, where an attacker must be able to provide input to the vulnerable function.

agent/severity
agent/references
agent/weakness
agent/author
agent/type
agent/description
agent/event
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
agent/remedy
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/joe shaw
canonical/libsoup
version/libsoup/2.23.6
version/libsoup/2.1
version/libsoup/2.23.92
version/libsoup/2.23.91
version/libsoup/2.23.1

Frequently Asked Questions

What is the severity of CVE-2009-0585?
CVE-2009-0585 is classified as a high severity vulnerability due to its potential to allow arbitrary code execution.
How do I fix CVE-2009-0585?
To fix CVE-2009-0585, upgrade libsoup to version 2.22 or later to mitigate the integer overflow issue.
What versions are affected by CVE-2009-0585?
CVE-2009-0585 affects libsoup versions 2.1, 2.23.1 to 2.23.92, and any version before 2.2 and 2.24.
What type of attack does CVE-2009-0585 allow?
CVE-2009-0585 allows context-dependent attackers to execute arbitrary code through crafted base64 input.
Is CVE-2009-0585 a remote exploit?
CVE-2009-0585 is considered a local exploit, where an attacker must be able to provide input to the vulnerable function.

CVE-2009-0585: Integer Overflow

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-0585?

How do I fix CVE-2009-0585?

What versions are affected by CVE-2009-0585?

What type of attack does CVE-2009-0585 allow?

Is CVE-2009-0585 a remote exploit?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2009-0585?

How do I fix CVE-2009-0585?

What versions are affected by CVE-2009-0585?

What type of attack does CVE-2009-0585 allow?

Is CVE-2009-0585 a remote exploit?