CVE-2009-3793

Risk Scores

Affected Products

Exploit Intelligence

• sample exploit of buffer overflow in libpng (github-poc)
• sample exploit of buffer overflow in libpng (github-poc)
• sample exploit of buffer overflow in libpng (github-poc)
• sample exploit of buffer overflow in libpng (github-poc)
• sample exploit of buffer overflow in libpng (github-poc)
• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
• A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)

…and 5 more exploits

Timeline

• Jun 11, 2010 CVE Published
• Feb 4, 2022 EPSS Score
• Mar 7, 2023 EPSS Score
• Mar 17, 2025 EPSS Score
• Mar 21, 2025 EPSS Score
• Mar 22, 2025 EPSS Score
• Mar 27, 2025 EPSS Score
• Mar 28, 2025 EPSS Score
• Apr 5, 2025 EPSS Score
• Apr 11, 2025 EPSS Score
• Apr 13, 2025 EPSS Score
• May 1, 2025 EPSS Score

References

• https://cert.ssi.gouv.fr/avis/CERTA-2010-AVI-261/ advisory
• http://www.adobe.com/support/security/bulletins/apsb10-14.html advisory
• https://cert.ssi.gouv.fr/avis/CERTA-2010-AVI-317/ advisory
• https://cert.ssi.gouv.fr/avis/CERTA-2010-AVI-548/ advisory
• http://support.apple.com/kb/HT4435 advisory
• https://cert.ssi.gouv.fr/avis/CERTA-2010-AVI-557/ advisory
• http://support.apple.com/kb/HT4452 advisory