Executive Summary
| Summary | |
|---|---|
| Title | Vulnerability in Indexing Service Could Allow Remote Code Execution (969059) |
| Informations | |||
|---|---|---|---|
| Name | MS09-057 | First vendor Publication | 2009-10-13 |
| Vendor | Microsoft | Last vendor Modification | 2009-10-13 |
| Severity (Vendor) | Important | Revision | 1.0 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Revision Note: Bulletin published.Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker set up a malicious Web page that invokes the Indexing Service through a call to its ActiveX component. This call could include a malicious URL and exploit the vulnerability, granting the attacker access to the client system with the privileges of the user browsing the Web page. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:6042 | |||
| Oval ID: | oval:org.mitre.oval:def:6042 | ||
| Title: | Memory Corruption in Indexing Service Vulnerability | ||
| Description: | A certain ActiveX control in the Indexing Service in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly process URLs, which allows remote attackers to execute arbitrary programs via unspecified vectors that cause a "vulnerable binary" to load and run, aka "Memory Corruption in Indexing Service Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2009-2507 | Version: | 1 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Os | 1 | |
| Os | 3 | |
| Os | 3 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2009-10-15 | Name : Microsoft Windows Indexing Service ActiveX Vulnerability (969059) File : nvt/secpod_ms09-057.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 58854 | Microsoft Windows Indexing Service ActiveX Memory Corruption Arbitrary Code E... |
Information Assurance Vulnerability Management (IAVM)
| Date | Description |
|---|---|
| 2009-10-15 | IAVM : 2009-B-0053 - Microsoft Indexing Services Remote Code Execution Vulnerability Severity : Category I - VMSKEY : V0021750 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | Microsoft Internet Explorer indexing service malformed parameters RuleID : 16155 - Revision : 10 - Type : BROWSER-IE |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2009-10-13 | Name : The remote Windows host has an ActiveX control that is affected by a code exe... File : smb_nt_ms09-057.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:46:22 |
|
| 2014-01-19 21:30:23 |
|
| 2013-11-11 12:41:13 |
|
