Unrated severityNVD Advisory· Published May 7, 2009· Updated Apr 23, 2026
CVE-2009-1586
CVE-2009-1586
Description
Stack-based buffer overflow in the NZB importer feature in GrabIt 1.7.2 Beta 3 and earlier allows remote attackers to execute arbitrary code via a crafted DTD reference in a DOCTYPE element in an NZB file.
Affected products
10cpe:2.3:a:shemes:grabit:*:beta3:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:shemes:grabit:*:beta3:*:*:*:*:*:*range: <=1.7.2
- cpe:2.3:a:shemes:grabit:1.5.0:beta:*:*:*:*:*:*
- cpe:2.3:a:shemes:grabit:1.5.1:beta:*:*:*:*:*:*
- cpe:2.3:a:shemes:grabit:1.5.2:beta:*:*:*:*:*:*
- cpe:2.3:a:shemes:grabit:1.5.3:beta:*:*:*:*:*:*
- cpe:2.3:a:shemes:grabit:1.6.1:beta:*:*:*:*:*:*
- cpe:2.3:a:shemes:grabit:1.6.2:beta:*:*:*:*:*:*
- cpe:2.3:a:shemes:grabit:1.7.1:beta:*:*:*:*:*:*
- cpe:2.3:a:shemes:grabit:1.7.2:beta:*:*:*:*:*:*
- cpe:2.3:a:shemes:grabit:1.7.2:beta2:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- www.shemes.com/index.phpnvdPatchVendor Advisory
- secunia.com/advisories/34893nvdVendor Advisory
- www.vupen.com/english/advisories/2009/1243nvdVendor Advisory
- blog.teusink.net/2009/05/grabit-172-beta-3-nzb-file-parsing.htmlnvd
- osvdb.org/54205nvd
- www.securityfocus.com/archive/1/503184/100/0/threadednvd
- www.securityfocus.com/bid/34807nvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/50310nvd
- www.exploit-db.com/exploits/8612nvd
News mentions
0No linked articles in our index yet.