Content
(MS09-056) Integer Overflow in X.509 Object Identifiers Vulnerability (974571)
- Type
- Logic error
- Impact of exploitation
- Spoofing
- User Interaction
- user interaction is needed
- Attack Vector
- Website with malicious content
- Rating
- Low
- CVE reference
- CVE-2009-2511,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Windows 2000 SP4,
- Windows XP SP3,
- Windows XP X64 SP2,
- Windows 2003 SP2,
- Windows 2003 x64 SP2,
- Windows Vista SP1,
- Windows 2008,
- Windows 2008 x64,
- Windows Vista SP2,
- Windows 2008 SP2,
- Windows 2008 x64 SP2,
- Windows 7,
- Windows 7 x64,
- Windows 7 Itanium,
- Summary
- A vulnerability in the Microsoft Windows CryptoAPI component may allow for spoofing attacks.
Tab Navigation
Description
A vulnerability in the Microsoft Windows CryptoAPI component may allow for spoofing attacks. A spoofing vulnerability exists in the Microsoft Windows CryptoAPI component when parsing ASN.1 object identifiers from X.509 certificates. An attacker who successfully exploited this vulnerability could impersonate another user or system.
McAfee Product Mitigation & Recommendations
Recommendations
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-056.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-056) Integer Overflow in X.509 Object Identifiers Vulnerability (974571)
- Signature identifier:
- 7199
- Release date:
- 10/13/2009
McAfee Intrushield
- Signature:
- SSL: Integer Overflow in X.509 Object Identifiers Vulnerability
- Signature identifier:
- 0x45C02100
- Release date:
- 10/13/2009
- First released in:
- 4.1.59, 5.1.29
McAfee Host IPS
- Signature:
- (MS09-056) Integer Overflow in X.509 Object Identifiers Vulnerability (974571)
- Signature identifier:
- 7199
- Release date:
- 10/14/2009
McAfee VirusScan Enterprise 8.0i (VSE8.0i) / Managed Virus Scan (MVS) Buffer Overflow Protection
McAfee VirusScan Enterprise 8.5i (VSE8.5i) /Total Protection for Small Business (ToPS SB) Buffer Overflow Protection
The V-Flash of 10/14/2009 contains coverage for windows.
- Release date:
- 10/14/2009
Additional Resources
(MS09-056) Integer Overflow in X.509 Object Identifiers Vulnerability (974571)
http://www.microsoft.com/technet/security/bulletin/ms09-056.mspx
All Information
Timeline -
10/13/2009
Vendor has provided a patch.
Description -
A vulnerability in the Microsoft Windows CryptoAPI component may allow for spoofing attacks. A spoofing vulnerability exists in the Microsoft Windows CryptoAPI component when parsing ASN.1 object identifiers from X.509 certificates. An attacker who successfully exploited this vulnerability could impersonate another user or system.
McAfee Product Mitigation & Recommendations
Recommendations -
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-056.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-056) Integer Overflow in X.509 Object Identifiers Vulnerability (974571)
- Signature identifier:
- 7199
- Release date:
- 10/13/2009
McAfee Intrushield
- Signature:
- SSL: Integer Overflow in X.509 Object Identifiers Vulnerability
- Signature identifier:
- 0x45C02100
- Release date:
- 10/13/2009
- First released in:
- 4.1.59, 5.1.29
McAfee Host IPS
- Signature:
- (MS09-056) Integer Overflow in X.509 Object Identifiers Vulnerability (974571)
- Signature identifier:
- 7199
- Release date:
- 10/14/2009
McAfee VirusScan Enterprise 8.0i (VSE8.0i) / Managed Virus Scan (MVS) Buffer Overflow Protection
McAfee VirusScan Enterprise 8.5i (VSE8.5i) /Total Protection for Small Business (ToPS SB) Buffer Overflow Protection
The V-Flash of 10/14/2009 contains coverage for windows.
- Release date:
- 10/14/2009
Additional Resources
Additional Resources -
(MS09-056) Integer Overflow in X.509 Object Identifiers Vulnerability (974571)
http://www.microsoft.com/technet/security/bulletin/ms09-056.mspx
