CVE-2009-3267

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2009-3267
Microsoft Internet Explorer 6 through 6.0.2900.2180, and 7.0.6000.16711, allows remote attackers to cause a denial of service (CPU consumption) via an automatically submitted form containing a KEYGEN element, a related issue to CVE-2009-1828.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://websecurity.com.ua/3194/ Third Party Advisory
http://www.securityfocus.com/archive/1/506328/100/100/threaded Broken Link Third Party Advisory VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5519 Tool Signature
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*
History

28 Feb 2022, 16:59

Type Values Removed Values Added
CPE cpe:2.3:a:microsoft:internet_explorer:6.00.3718.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0.2800:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0.2800.1106:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.3790.1830:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0.2900.2180:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.2900.2180:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.00.6000.16441:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.00.5730.1100:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:7.0.6000.16711:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0.2600:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.0.5730:unknown:gold:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.00.6000.16386:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.3663.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.3790.3959:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.3790.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.2600.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.0.5730.11:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.2479.0006:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.2462.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0.2900:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.2800.1106:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*		 cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*
CWE CWE-399 CWE-400
References (BUGTRAQ) http://www.securityfocus.com/archive/1/506328/100/100/threaded - (BUGTRAQ) http://www.securityfocus.com/archive/1/506328/100/100/threaded - Broken Link, Third Party Advisory, VDB Entry
References (OVAL) https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5519 - (OVAL) https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5519 - Tool Signature
References (MISC) http://websecurity.com.ua/3194/ - (MISC) http://websecurity.com.ua/3194/ - Third Party Advisory

23 Jul 2021, 15:06

Type Values Removed Values Added
CPE cpe:2.3:a:microsoft:ie:6.0.2600:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.00.3790.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.00.2479.0006:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.00.2900.2180:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.0.2900:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.0.2800.1106:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.00.3718.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:7.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.00.3663.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:7.00.6000.16386:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.00.3790.3959:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:7.00.6000.16441:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.00.2600.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:7.00.5730.1100:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.00.2462.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.0.2900.2180:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.0.2800:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:7.0.5730.11:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:7.0.5730:unknown:gold:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.00.2800.1106:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6.00.3790.1830:*:*:*:*:*:*:*		 cpe:2.3:a:microsoft:internet_explorer:6.0.2800:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.00.6000.16441:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0.2600:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.2479.0006:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.3790.3959:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.3663.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.2800.1106:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0.2900.2180:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0.2800.1106:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.2600.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.3718.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.00.5730.1100:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.0.2900:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.0.5730:unknown:gold:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.2462.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.3790.0000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.2900.2180:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.0.5730.11:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:7.00.6000.16386:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6.00.3790.1830:*:*:*:*:*:*:*
Information

Published : 2009-09-18 22:30

Updated : 2024-02-04 17:33

NVD link : CVE-2009-3267

Mitre link : CVE-2009-3267

CVE.ORG link : CVE-2009-3267

JSON object : View

Products Affected

microsoft

  • internet_explorer
CWE
CWE-400

Uncontrolled Resource Consumption