How severe is CVE-2009-0231?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.8 out of 10.

What type of vulnerability is CVE-2009-0231?

This is classified as CWE-681, which is a common weakness in software security.

CVE-2009-0231

HIGH Year: 2009

CVSS v3 Score

8.8

High

CVSS v2 Score

9.3

Critical

Weakness Type

CWE-681

View all →

Vulnerability Description

The Embedded OpenType (EOT) Font Engine (T2EMBED.DLL) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via a crafted name table in a data record that triggers an integer truncation and a heap-based buffer overflow, aka "Embedded OpenType Font Heap Overflow Vulnerability."

CVE-2021-23997

HIGH

CVSS:8.8(High)

Due to unexpected data type conversions, a use-after-free could have occurred when interacting with the font cache. We presume that with enough effort this could have been exploited to run arbitrary c...

CWE-6812021

CVE-2023-23388

HIGH

CVSS:8.8(High)

Windows Bluetooth Driver Elevation of Privilege Vulnerability

CWE-6812023

CVE-2023-24884

HIGH

CVSS:8.8(High)

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

CWE-6812023

CVE-2024-26162

HIGH

CVSS:8.8(High)

Microsoft ODBC Driver Remote Code Execution Vulnerability

CWE-6812024

CVE-2024-49093

HIGH

CVSS:8.8(High)

Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability

CWE-6812024

CVE-2016-3074

CRITICAL

CVSS:9.8(Critical)

Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd...

CWE-6812016

CVE-2009-0231

Vulnerability Description

Related Vulnerabilities

CVE-2021-23997

CVE-2023-23388

CVE-2023-24884

CVE-2024-26162

CVE-2024-49093

CVE-2016-3074