| | CVE-2009-2052 | Cisco | high | 7.8 | 2.8%
| | Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x, 5.x before 5.1(3g), 6.x b… | Aug 27, 2009 | Apr 23, 2026 |
| | CVE-2009-2051 | Cisco | high | 7.8 | 1.7%
| | Cisco IOS 12.2 through 12.4 and 15.0 through 15.1, Cisco IOS XE 2.5.x and 2.6.x before 2.6.1, and Ci… | Aug 27, 2009 | Apr 23, 2026 |
| | CVE-2009-2050 | Cisco | high | 7.8 | 1.7%
| | Cisco Unified Communications Manager (aka CUCM, formerly CallManager) before 6.1(1) allows remote at… | Aug 27, 2009 | Apr 23, 2026 |
| | CVE-2009-2954 | Microsoft | medium | 5.0 | 13.7%
| | Microsoft Internet Explorer 6.0.2900.2180 and earlier allows remote attackers to cause a denial of s… | Aug 24, 2009 | Apr 23, 2026 |
| | CVE-2008-7025 | Check Point | medium | 4.3 | 2.1%
| | TrueVector in Check Point ZoneAlarm 8.0.020.000, with vsmon.exe running, allows remote HTTP proxies … | Aug 21, 2009 | Apr 23, 2026 |
| | CVE-2008-7020 | Trellix | low | 2.1 | 0.0%
| | McAfee SafeBoot Device Encryption 4 build 4750 and earlier stores pre-boot authentication passwords … | Aug 21, 2009 | Apr 23, 2026 |
| | CVE-2008-7009 | Check Point | medium | 6.9 | 0.2%
| | Buffer overflow in multiscan.exe in Check Point ZoneAlarm Security Suite 7.0.483.000 and 8.0.020.000… | Aug 19, 2009 | Apr 23, 2026 |
| | CVE-2009-2848 | VMware | medium | 5.9 | 0.1%
| | The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear th… | Aug 18, 2009 | Apr 23, 2026 |
| | CVE-2009-2764 | Microsoft | medium | 5.0 | 27.3%
| | Microsoft Internet Explorer 8.0.7100.0 on Windows 7 RC on the x64 platform allows remote attackers t… | Aug 14, 2009 | Apr 23, 2026 |
| | CVE-2009-2677 | HPE | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in HP Insight Control Suite For Linux (aka ICE-LX) b… | Aug 14, 2009 | Apr 23, 2026 |
| | CVE-2009-2496 | Microsoft | critical | 9.3 | 55.5%
| | Heap-based buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, … | Aug 12, 2009 | Apr 23, 2026 |
| | CVE-2009-1536 | Microsoft | low | 2.6 | 53.1%
| | ASP.NET in Microsoft .NET Framework 2.0 SP1 and SP2 and 3.5 Gold and SP1, when ASP 2.0 is used in in… | Aug 12, 2009 | Apr 23, 2026 |
| | CVE-2009-1534 | Microsoft | critical | 9.3 | 75.4%
| | Buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2000… | Aug 12, 2009 | Apr 23, 2026 |
| | CVE-2009-0562 | Microsoft | critical | 9.3 | 62.2%
| | The Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web… | Aug 12, 2009 | Apr 23, 2026 |
| | CVE-2009-1427 | HPE | medium | 4.9 | 0.1%
| | Unspecified vulnerability in HP-UX B.11.31 allows local users to cause a denial of service (system c… | Aug 12, 2009 | Apr 23, 2026 |
| | CVE-2009-2416 | VMware | medium | 6.5 | 0.2%
| | Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and l… | Aug 11, 2009 | Apr 23, 2026 |
| | CVE-2009-1885 | Apache | medium | 4.3 | 14.1%
| | Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 2.7.0 and 2.8.… | Aug 11, 2009 | Apr 23, 2026 |
| | CVE-2009-2625 | Apache | medium | 5.0 | 1.2%
| | XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime Environment (JRE) in JDK and JRE… | Aug 6, 2009 | Apr 23, 2026 |
| | CVE-2009-2412 | Apache | critical | 10.0 | 7.8%
| | Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Portable Util… | Aug 6, 2009 | Apr 23, 2026 |
| | CVE-2009-2668 | Microsoft | high | 7.8 | 23.2%
| | Microsoft Internet Explorer 6 through 6.0.2900.2180 and 7 through 7.0.6000.16473 allows remote attac… | Aug 5, 2009 | Apr 23, 2026 |
| | CVE-2008-6893 | Microsoft | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Alt-N MDaemon WorldClient 10.0.2, when Internet Explorer… | Aug 3, 2009 | Apr 23, 2026 |
| | CVE-2009-2655 | Microsoft | medium | 4.3 | 22.6%
| | mshtml.dll in Microsoft Internet Explorer 7 and 8 on Windows XP SP3 allows remote attackers to cause… | Aug 3, 2009 | Apr 23, 2026 |
| | CVE-2008-6879 | Apache | medium | 4.3 | 2.7%
| | Cross-site scripting (XSS) vulnerability in Apache Roller 2.3, 3.0, 3.1, and 4.0 allows remote attac… | Jul 30, 2009 | Apr 23, 2026 |
| | CVE-2009-2495 | Microsoft | medium | 6.5 | 65.6%
| | The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 a… | Jul 29, 2009 | May 27, 2026 |
| | CVE-2009-2493 | Microsoft | high | 8.8 | 56.6%
| | The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 a… | Jul 29, 2009 | May 27, 2026 |
| | CVE-2009-1919 | Microsoft | critical | 9.3 | 57.7%
| | Microsoft Internet Explorer 5.01 SP4 and 6 SP1; Internet Explorer 6 for Windows XP SP2 and SP3 and S… | Jul 29, 2009 | Apr 23, 2026 |
| | CVE-2009-1918 | Microsoft | critical | 10.0 | 60.2%
| | Microsoft Internet Explorer 5.01 SP4 and 6 SP1; Internet Explorer 6 for Windows XP SP2 and SP3 and S… | Jul 29, 2009 | Apr 23, 2026 |
| | CVE-2009-1917 | Microsoft | critical | 9.3 | 63.0%
| | Microsoft Internet Explorer 6 SP1; Internet Explorer 6 for Windows XP SP2 and SP3 and Server 2003 SP… | Jul 29, 2009 | Apr 23, 2026 |
| | CVE-2009-0901 | Microsoft | high | 8.8 | 80.2%
| | The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 a… | Jul 29, 2009 | May 27, 2026 |
| | CVE-2009-2576 | Microsoft | medium | 5.0 | 30.1%
| | Microsoft Internet Explorer 6.0.2900.2180 and earlier allows remote attackers to cause a denial of s… | Jul 22, 2009 | Apr 23, 2026 |
| | CVE-2009-2544 | Microsoft | medium | 6.8 | 2.2%
| | Directory traversal vulnerability in the Marcelo Costa FileServer component 1.0 for Microsoft Window… | Jul 20, 2009 | Apr 23, 2026 |
| | CVE-2009-2536 | Microsoft | medium | 4.3 | 15.0%
| | Microsoft Internet Explorer 5 through 8 allows remote attackers to cause a denial of service (memory… | Jul 20, 2009 | Apr 23, 2026 |
| | CVE-2009-2048 | Cisco | low | 3.5 | 0.3%
| | Cross-site scripting (XSS) vulnerability in the Administration interface in Cisco Customer Response … | Jul 16, 2009 | Apr 23, 2026 |
| | CVE-2009-2047 | Cisco | critical | 9.0 | 0.6%
| | Directory traversal vulnerability in the Administration interface in Cisco Customer Response Solutio… | Jul 16, 2009 | Apr 23, 2026 |
| | CVE-2009-1542 | Microsoft | critical | 9.0 | 18.0%
| | The Virtual Machine Monitor (VMM) in Microsoft Virtual PC 2004 SP1, 2007, and 2007 SP1, and Microsof… | Jul 15, 2009 | Apr 23, 2026 |
| | CVE-2009-1539 | Microsoft | critical | 9.3 | 58.8%
| | The QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c … | Jul 15, 2009 | Apr 23, 2026 |
| | CVE-2009-1538 | Microsoft | critical | 9.3 | 70.0%
| | The QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c … | Jul 15, 2009 | Apr 23, 2026 |
| | CVE-2009-1136 | Microsoft | critical | 9.3 | 86.1%
| | The Microsoft Office Web Components Spreadsheet ActiveX control (aka OWC10 or OWC11), as distributed… | Jul 15, 2009 | Apr 23, 2026 |
| | CVE-2009-1135 | Microsoft | critical | 9.0 | 39.4%
| | Microsoft Internet Security and Acceleration (ISA) Server 2006 Gold and SP1, when Radius OTP is enab… | Jul 15, 2009 | Apr 23, 2026 |
| | CVE-2009-0566 | Microsoft | critical | 9.3 | 48.7%
| | Microsoft Office Publisher 2007 SP1 does not properly calculate object handler data for Publisher fi… | Jul 15, 2009 | Apr 23, 2026 |
| | CVE-2009-2433 | Microsoft | medium | 4.3 | 18.1%
| | Stack-based buffer overflow in the AddFavorite method in Microsoft Internet Explorer allows remote a… | Jul 10, 2009 | Apr 23, 2026 |
| | CVE-2009-2429 | Trellix | medium | 4.6 | 0.0%
| | SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in cleartext in admin_backup.xml f… | Jul 10, 2009 | Apr 23, 2026 |
| | CVE-2009-1891 | Apache | high | 7.1 | 18.8%
| | The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion ev… | Jul 10, 2009 | Apr 23, 2026 |
| | CVE-2009-2350 | Microsoft | medium | 4.3 | 13.3%
| | Microsoft Internet Explorer 6.0.2900.2180 and earlier does not block javascript: URIs in Refresh hea… | Jul 7, 2009 | Apr 23, 2026 |
| | CVE-2009-1890 | Apache | high | 7.1 | 37.9%
| | The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server… | Jul 5, 2009 | Apr 23, 2026 |
| | CVE-2009-2312 | Trellix | medium | 4.6 | 0.0%
| | SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in cleartext in config.txt and use… | Jul 2, 2009 | Apr 23, 2026 |
| | CVE-2009-2299 | Apache | medium | 5.0 | 0.9%
| | The Artofdefence Hyperguard Web Application Firewall (WAF) module before 2.5.5-11635, 3.0 before 3.0… | Jul 2, 2009 | Apr 23, 2026 |
| | CVE-2009-2298 | HPE | high | 7.5 | 2.5%
| | Stack-based buffer overflow in rping in HP OpenView Network Node Manager (OV NNM) 7.53 on Linux allo… | Jul 2, 2009 | Apr 23, 2026 |
| | CVE-2009-1421 | HPE | medium | 4.9 | 0.1%
| | Unspecified vulnerability in NFS / ONCplus B.11.31_06 and B.11.31_07 on HP HP-UX B.11.31 allows loca… | Jul 2, 2009 | Apr 23, 2026 |
| | CVE-2009-1203 | Cisco | medium | 6.0 | 5.7%
| | WebVPN on the Cisco Adaptive Security Appliances (ASA) device with software 8.0(4), 8.1.2, and 8.2.1… | Jun 25, 2009 | Apr 23, 2026 |