Vulnerability Details : CVE-2009-0228
Stack-based buffer overflow in the EnumeratePrintShares function in Windows Print Spooler Service (win32spl.dll) in Microsoft Windows 2000 SP4 allows remote printer servers to execute arbitrary code via a crafted ShareName in a response to an RPC request, related to "printing data structures," aka "Buffer Overflow in Print Spooler Vulnerability."
Vulnerability category: OverflowExecute code
Products affected by CVE-2009-0228
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2009-0228
71.57%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 98 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2009-0228
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2009-0228
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2009-0228
-
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=806
-
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-022
Microsoft Security Bulletin MS09-022 - Critical | Microsoft Learn
-
http://support.avaya.com/elmodocs2/security/ASA-2009-217.htm
ASA-2009-217 (961501)
-
http://www.securitytracker.com/id?1022352
-
http://www.us-cert.gov/cas/techalerts/TA09-160A.html
Page Not Found | CISAUS Government Resource
-
http://www.vupen.com/english/advisories/2009/1541
Webmail: access your OVH emails on ovhcloud.com | OVHcloud
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6317
-
http://www.securityfocus.com/bid/35206
Jump to