CVE-2009-2578

Google Chrome 2.x through 2.0.172 allows remote attackers to cause a denial of service (application crash) via a long Unicode string argument to the write method, a related issue to CVE-2009-2479.

Publication date: Wed, 22 Jul 2009 23:30:00 +0000

Cyber News related to CVE-2009-2578

CVE-2009-3403 - Unspecified vulnerability in the JRockit component in BEA Product Suite R27.6.4: JRE/JDK, 1.4.2, 5, and, and 6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this issue subsumes ...
12 years ago

QNAP Patches High-Severity Flaws in QTS, Video Station, QuMagie, Netatalk Products - Taiwan-based QNAP Systems on Friday announced patches for a dozen vulnerabilities across its product portfolio, including high-severity flaws in its operating system. The bug affects QTS versions 5.1.x and QuTS hero versions h5.1.x and was resolved ...
1 year ago Securityweek.com

CVE-2023-39294 - An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. ...
1 year ago

CVE-2023-39296 - A prototype pollution vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to override existing attributes with ones that have incompatible type, which may lead to a crash ...
1 year ago

CVE-2023-39302 - An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. ...
11 months ago

CVE-2023-45036 - A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. ...
11 months ago

CVE-2023-45037 - A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already ...
11 months ago Tenable.com

CVE-2023-39303 - An improper authentication vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to compromise the security of the system via a network. We have already fixed the ...
11 months ago Tenable.com

CVE-2024-21899 - An improper authentication vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to compromise the security of the system via a network. ...
10 months ago

CVE-2024-21900 - An injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute commands via a network. ...
10 months ago

CVE-2024-21905 - An integer overflow or wraparound vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to compromise the security of the system via a network. ...
8 months ago

CVE-2024-27124 - An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. ...
8 months ago

CVE-2024-32766 - An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. ...
8 months ago

CVE-2010-0079 - Multiple vulnerabilities in the JRockit component in BEA Product Suite R27.6.5 using JRE/JDK 1.4.2, 5, and 6 allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this CVE identifier overlaps ...
12 years ago

CVE-2009-2578 - Google Chrome 2.x through 2.0.172 allows remote attackers to cause a denial of service (application crash) via a long Unicode string argument to the write method, a related issue to CVE-2009-2479. ...
6 years ago

CVE-2009-3239 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-2139, CVE-2009-2140. Reason: This candidate is a duplicate of CVE-2009-2139 and CVE-2009-2140. Notes: All CVE users should reference CVE-2009-2139 and CVE-2009-2140 instead of ...
55 years ago Tenable.com

CVE-2009-4212 - Multiple integer underflows in the (1) AES and (2) RC4 decryption functionality in the crypto library in MIT Kerberos 5 (aka krb5) 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service (daemon crash) or possibly ...
4 years ago

Multiple QNAP Severity Flaw Let Attackers Execute Remote Code - QNAP has released multiple security advisories for addressing several high, medium, and low-severity vulnerabilities in multiple products, including QTS, QuTS hero, Netatalk, Video Station, QuMagie, and QcalAgent. QNAP has also stated all the ...
1 year ago Gbhackers.com

CVE-2005-2578 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-2552. Reason: This candidate is a duplicate of CVE-2005-2552. Notes: All CVE users should reference CVE-2005-2552 instead of this candidate. All references and descriptions in ...
55 years ago Tenable.com

CVE-2010-2578 - Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, and RealPlayer Enterprise 2.1.2 allows remote attackers to have an unspecified impact via a crafted QCP file. ...
14 years ago

CVE-2012-2578 - Multiple cross-site scripting (XSS) vulnerabilities in SmarterMail 9.2 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a JavaScript alert function used in conjunction with the fromCharCode method, (2) ...
12 years ago

CVE-2017-2578 - In Moodle 3.x, there is XSS in the assignment submission page. ...
7 years ago

CVE-2004-2578 - phpGroupWare before 0.9.16.002 transmits the (1) header admin and (2) setup passwords in plaintext via cookies, which allows remote attackers to sniff passwords. ...
7 years ago

CVE-2006-2578 - admin/cron.php in eSyndicat Directory 1.2, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include arbitrary files and possibly execute arbitrary PHP code via a null-terminated value in the path_to_config ...
1 year ago

CVE-2014-2578 - Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk before 5.0.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. ...
7 years ago

Latest Cyber News

CVE-2024-11848 - 12 hours ago
CVE-2024-11851 - 12 hours ago
CVE-2024-12593 - 12 hours ago
CVE-2025-0439 - 13 hours ago
CVE-2025-0440 - 13 hours ago
CVE-2025-0441 - 13 hours ago
CVE-2025-0442 - 13 hours ago
CVE-2025-0443 - 13 hours ago
CVE-2025-0446 - 13 hours ago
CVE-2025-0447 - 13 hours ago
CVE-2025-0448 - 13 hours ago
CVE-2024-35280 - 13 hours ago
CVE-2025-0193 - 13 hours ago
CVE-2025-0434 - 13 hours ago
CVE-2025-0435 - 13 hours ago
CVE-2025-0436 - 13 hours ago
CVE-2025-0437 - 13 hours ago
CVE-2025-0438 - 13 hours ago
CVE-2024-9636 - 14 hours ago
CVE-2024-10775 - 14 hours ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

CVE-2023-37931 - 1 day ago
CVE-2023-37936 - 1 day ago
CVE-2023-37937 - 1 day ago
CVE-2023-42785 - 1 day ago
CVE-2023-42786 - 1 day ago
CVE-2023-46715 - 1 day ago
CVE-2024-11497 - 1 day ago
CVE-2024-11863 - 1 day ago
CVE-2024-11864 - 1 day ago
CVE-2024-21758 - 1 day ago
CVE-2024-23106 - 1 day ago
CVE-2024-26012 - 1 day ago
CVE-2024-27778 - 1 day ago
CVE-2024-32115 - 1 day ago
CVE-2024-33502 - 1 day ago
CVE-2024-33503 - 1 day ago
CVE-2024-35273 - 1 day ago
CVE-2024-35275 - 1 day ago
CVE-2024-35276 - 1 day ago
CVE-2024-35277 - 1 day ago