Executive Summary
| Summary | |
|---|---|
| Title | Vulnerability in Wireless LAN AutoConfig Service Could Allow Remote Code Execution (970710) |
| Informations | |||
|---|---|---|---|
| Name | MS09-049 | First vendor Publication | 2009-09-08 |
| Vendor | Microsoft | Last vendor Modification | 2009-09-09 |
| Severity (Vendor) | Critical | Revision | 1.1 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Revision Note: V1.1 (September 9, 2009): Revised the description for Wireless Frame Parsing Remote Code Execution Vulnerability (CVE-2009-1132) to clarify exploit conditions.Summary: This security update resolves a privately reported vulnerability in Wireless LAN AutoConfig Service. The vulnerability could allow remote code execution if a client or server with a wireless network interface enabled receives specially crafted wireless frames. Systems without a wireless card enabled are not at risk from this vulnerability. |
Original Source
| Url : http://www.microsoft.com/technet/security/bulletin/MS09-049.mspx |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:6389 | |||
| Oval ID: | oval:org.mitre.oval:def:6389 | ||
| Title: | Wireless Frame Parsing Remote Code Execution Vulnerability | ||
| Description: | Heap-based buffer overflow in the Wireless LAN AutoConfig Service (aka Wlansvc) in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via a malformed wireless frame, aka "Wireless Frame Parsing Remote Code Execution Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2009-1132 | Version: | 3 |
| Platform(s): | Microsoft Windows Vista Microsoft Windows Server 2008 | Product(s): | |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
OpenVAS Exploits
| Date | Description |
|---|---|
| 2010-12-06 | Name : Microsoft Wireless LAN AutoConfig Service Remote Code Execution Vulnerabilit... File : nvt/gb_ms09-049.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 57806 | Microsoft Windows Wireless LAN AutoConfig Service (wlansvc) Frame Parsing Arb... The vulnerability is caused due to an unspecified error in the Wireless LAN AutoConfig Service (wlansvc) when parsing certain wireless network frames. This can be exploited to cause a heap-based buffer overflow via a specially crafted frame received on the wireless network interface. |
Information Assurance Vulnerability Management (IAVM)
| Date | Description |
|---|---|
| 2009-09-10 | IAVM : 2009-A-0078 - Microsoft Wireless LAN AutoConfig Service Vulnerability Severity : Category I - VMSKEY : V0019913 |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2009-09-08 | Name : Arbitrary code can be executed on the remote host through the Wireless LAN Au... File : smb_nt_ms09-049.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:46:20 |
|
| 2013-11-11 12:41:13 |
|
