Vulnerability Description
Buffer overflow in Softonic International SciTE 1.72 allows user-assisted remote attackers to cause a denial of service (application crash) via a Ruby (.rb) file containing a long string, which triggers the crash when a scroll bar is used.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Softonic | Scite | 1.72 |
Related Weaknesses (CWE)
References
- http://www.exploit-db.com/exploits/9133
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51674
- http://www.exploit-db.com/exploits/9133
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51674
FAQ
What is CVE-2009-3857?
CVE-2009-3857 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Buffer overflow in Softonic International SciTE 1.72 allows user-assisted remote attackers to cause a denial of service (application crash) via a Ruby (.rb) file containing a long string, which trigge...
How severe is CVE-2009-3857?
CVE-2009-3857 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3857?
Check the references section above for vendor advisories and patch information. Affected products include: Softonic Scite.