CVE-2009-1885

Risk Scores

Affected Products

Exploit Intelligence

• 36201 (circl)
• MDVSA-2009:223 (circl)
• http://www.networkworld.com/columnists/2009/080509-xml-flaw.html (circl)
• http://www.cert.fi/en/reports/2009/vulnerability2009085.html (circl)
• http://www.codenomicon.com/labs/xml/ (circl)
• FEDORA-2009-8345 (circl)
• 35986 (circl)
• http://svn.apache.org/viewvc/xerces/c/trunk/src/xercesc/validators/DTD/DTDScanner.cpp?r1=781488&r2=781487&pathrev=781488&view=patch (circl)
• FEDORA-2009-8332 (circl)
• FEDORA-2009-8305 (circl)

…and 5 more exploits

Timeline

• Aug 11, 2009 CVE Published
• Feb 4, 2022 EPSS Score
• Mar 29, 2022 EPSS Score
• May 20, 2022 EPSS Score
• Jul 17, 2022 EPSS Score
• Jul 18, 2022 EPSS Score
• Sep 4, 2022 EPSS Score
• Oct 26, 2022 EPSS Score
• Dec 18, 2022 EPSS Score
• Mar 7, 2023 EPSS Score
• Apr 3, 2023 EPSS Score
• May 25, 2023 EPSS Score

References

• 35986 vdb
• http://www.networkworld.com/columnists/2009/080509-xml-flaw.html url
• http://www.cert.fi/en/reports/2009/vulnerability2009085.html url
• http://www.codenomicon.com/labs/xml/ url
• FEDORA-2009-8345 vendor-advisory
• 36201 third-party-advisory
• ADV-2009-2196 vdb
• http://svn.apache.org/viewvc/xerces/c/trunk/src/xercesc/validators/DTD/DTDScanner.cpp?r1=781488&r2=781487&pathrev=781488&view=patch url
• FEDORA-2009-8305 vendor-advisory
• MDVSA-2009:223 vendor-advisory
• xerces-c-dtd-dos(52321) vdb
• FEDORA-2009-8350 vendor-advisory
• http://svn.apache.org/viewvc?view=rev&revision=781488 url
• https://bugzilla.redhat.com/show_bug.cgi?id=515515 url
• FEDORA-2009-8332 vendor-advisory
• https://nvd.nist.gov/vuln/detail/CVE-2009-1885 advisory
• http://www.codenomicon.com/labs/xml url