Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2009-0901
HistoryJul 29, 2009 - 5:30 p.m.

Design/Logic Flaw

2009-07-2917:30:00
PRIOn knowledge base
www.prio-n.com
6

7.9 High

AI Score

Confidence

Low

0.945 High

EPSS

Percentile

99.2%

JSON

The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold, and Visual C++ 2005 SP1 and 2008 Gold and SP1; and Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2; does not prevent VariantClear calls on an uninitialized VARIANT, which allows remote attackers to execute arbitrary code via a malformed stream to an ATL (1) component or (2) control, related to ATL headers and error handling, aka β€œATL Uninitialized Object Vulnerability.”

References

Related

cvelist 1
saint 4
nvd 1
seebug 1
cve 1
checkpoint_advisories 1
securityvulns 5
openvas 6
nessus 11
mskb 2
cert 1
f5 1
suse 1
cvelist
cvelist
CVE-2009-0901
2009-07-29 17:00:00
saint
saint
Visual Studio Active Template Library uninitialized object
2009-07-30 00:00:00
Visual Studio Active Template Library uninitialized object
2009-07-30 00:00:00
Visual Studio Active Template Library uninitialized object
2009-07-30 00:00:00
nvd
nvd
CVE-2009-0901
2009-07-29 17:30:00
seebug
seebug
Microsoft Visual Studio ATL 'VariantClear()'θΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄ž
2009-07-29 00:00:00
cve
cve
CVE-2009-0901
2009-07-29 17:30:00
checkpoint_advisories
checkpoint_advisories
Microsoft ATL Uninitialized Object Code Execution (MS09-037; CVE-2009-0901)
2010-06-02 00:00:00
securityvulns
securityvulns
[security bulletin] HPSBMA02488 SSRT100013 rev.1 - HP ProLiant Support Pack 8.30 for Windows, Remote Code Execution, Information Disclosure
2010-02-12 00:00:00
Microsoft Active Template Library (ATL) multiple security vulnerabilities
2009-10-13 00:00:00
Microsoft Security Bulletin MS09-035 - Moderate Vulnerabilities in Visual Studio Active Template Library Could Allow Remote Code Execution (969706)
2009-07-29 00:00:00
openvas
openvas
Microsoft Visual Studio ATL Remote Code Execution Vulnerability (969706)
2009-08-03 00:00:00
Microsoft ATL ActiveX Controls for MS Office Could Allow Remote Code Execution (973965)
2009-10-14 00:00:00
Microsoft Visual Studio ATL Remote Code Execution Vulnerability (969706)
2009-08-03 00:00:00
nessus
nessus
MS09-060: Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)
2009-10-14 00:00:00
MS09-035: Vulnerabilities in Visual Studio Active Template Library Could Allow Remote Code Execution (969706)
2009-07-30 00:00:00
Shockwave Player < 11.5.0.601 Multiple Vulnerabilities (APSB09-11)
2009-07-29 00:00:00
mskb
mskb
MS09-035: Vulnerabilities in Visual Studio Active Template Libraries could allow remote code execution
2018-04-17 20:27:28
MS09-037: Vulnerabilities in Microsoft Active Template Library (ATL) could allow remote code execution
2019-11-06 02:17:02
cert
cert
ActiveX controls built with Microsoft ATL fail to properly handle initialization data
2009-07-28 00:00:00
f5
f5
SOL10441 - Microsoft Active Template Library (ATL) vulnerabilities VU#456745
2009-08-17 00:00:00
suse
suse
remote code execution in flash-player
2009-08-05 14:55:37

7.9 High

AI Score

Confidence

Low

0.945 High

EPSS

Percentile

99.2%

JSON
Related for PRION:CVE-2009-0901
cvelist1saint4nvd1seebug1cve1checkpoint_advisories1securityvulns5openvas6nessus11mskb2cert1f51suse1