VYPR
← All advisories
Unrated severityNVD Advisory· Published Jul 10, 2009· Updated Apr 23, 2026

CVE-2009-2433

CVE-2009-2433

Description

Stack-based buffer overflow in the AddFavorite method in Microsoft Internet Explorer allows remote attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a long URL in the first argument.

Affected products

14
  • Microsoft/Ie
    cpe:2.3:a:microsoft:ie:8.0b:*:*:*:*:*:*:*
  • Microsoft/Internet Explorer13 versions
    cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.00.5730.1100:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.00.6000.16386:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.00.6000.16441:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.0.5730.11:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.0.5730:unknown:gold:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.0:beta:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.0:beta1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.0:beta2:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.0:beta3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:8.0.6001:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:8.0.6001:beta:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.