Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2009-2495
HistoryJul 29, 2009 - 5:30 p.m.

Buffer overflow

2009-07-2917:30:00
PRIOn knowledge base
www.prio-n.com
7

6.5 Medium

AI Score

Confidence

Low

0.062 Low

EPSS

Percentile

93.6%

JSON

The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1 does not properly enforce string termination, which allows remote attackers to obtain sensitive information via a crafted HTML document with an ATL (1) component or (2) control that triggers a buffer over-read, related to ATL headers and buffer allocation, aka β€œATL Null String Vulnerability.”

References

Related

cve 1
cvelist 1
nvd 1
seebug 1
securityvulns 5
openvas 4
nessus 3
cert 1
mskb 1
f5 1
cve
cve
CVE-2009-2495
2009-07-29 17:30:01
cvelist
cvelist
CVE-2009-2495
2009-07-29 17:00:00
nvd
nvd
CVE-2009-2495
2009-07-29 17:30:01
seebug
seebug
Microsoft Visual Studio ATL NULLε­—η¬¦δΈ²δΏ‘ζ―ζ³„ζΌζΌζ΄ž
2009-07-29 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 07.28.09: Multiple Vendor Microsoft ATL/MFC ActiveX Information Disclosure Vulnerability
2009-08-20 00:00:00
[security bulletin] HPSBMA02488 SSRT100013 rev.1 - HP ProLiant Support Pack 8.30 for Windows, Remote Code Execution, Information Disclosure
2010-02-12 00:00:00
Microsoft Active Template Library (ATL) multiple security vulnerabilities
2009-10-13 00:00:00
openvas
openvas
Microsoft Visual Studio ATL Remote Code Execution Vulnerability (969706)
2009-08-03 00:00:00
Microsoft Visual Studio ATL Remote Code Execution Vulnerability (969706)
2009-08-03 00:00:00
Microsoft ATL ActiveX Controls for MS Office Could Allow Remote Code Execution (973965)
2009-10-14 00:00:00
nessus
nessus
MS09-035: Vulnerabilities in Visual Studio Active Template Library Could Allow Remote Code Execution (969706)
2009-07-30 00:00:00
MS09-060: Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)
2009-10-14 00:00:00
Shockwave Player < 11.5.0.601 Multiple Vulnerabilities (APSB09-11)
2009-07-29 00:00:00
cert
cert
ActiveX controls built with Microsoft ATL fail to properly handle initialization data
2009-07-28 00:00:00
mskb
mskb
MS09-035: Vulnerabilities in Visual Studio Active Template Libraries could allow remote code execution
2018-04-17 20:27:28
f5
f5
SOL10441 - Microsoft Active Template Library (ATL) vulnerabilities VU#456745
2009-08-17 00:00:00

6.5 Medium

AI Score

Confidence

Low

0.062 Low

EPSS

Percentile

93.6%

JSON
Related for PRION:CVE-2009-2495
cve1cvelist1nvd1seebug1securityvulns5openvas4nessus3cert1mskb1f51