Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0228

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2009-0228
Last Modified 21 Aug 2010 01:29:58
Published 10 Jun 2009 02:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-0228

Summary

Stack-based buffer overflow in the EnumeratePrintShares function in Windows Print Spooler Service (win32spl.dll) in Microsoft Windows 2000 SP4 allows remote printer servers to execute arbitrary code via a a crafted ShareName in a response to an RPC request, related to "printing data structures," aka "Buffer Overflow in Print Spooler Vulnerability."

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


References

CERT - TA09-160A

MS - MS09-022

VUPEN - ADV-2009-1541

SECTRACK - 1022352

BID - 35206

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2009-217.htm

SECUNIA - 35365

OSVDB - 54932

IDEFENSE - 20090609 Microsoft Windows 2000 Print Spooler Remote Stack Buffer Overflow Vulnerability


Last Updated: 27 May 2016 10:50:10