Content
(MS09-063) Vulnerability in Web Service on Devices Could Allow Remote Code Execution (973565)
- Type
- Buffer Overflow
- Impact of exploitation
- Remote Code Execution
- User Interaction
- no user interaction is needed
- Attack Vector
- Malicious local network traffic
- Rating
- Critical
- CVE reference
- CVE-2009-2512,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Windows 2008,
- Windows Vista SP1,
- Windows 2008 x64,
- Windows 2008 Itanium,
- Windows Vista SP2,
- Windows 2008 SP2,
- Windows 2008 Itanium SP2,
- Windows 2008 x64 SP2,
- Summary
- A remote code execution vulnerability exists in the Web Service on Devices API (WSDAPI) on Windows systems. The vulnerability is due to the service not properly handling a WSDAPI message with a maliciously crafted MIME header. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
Tab Navigation
Description
A remote code execution vulnerability exists in the Web Service on Devices API (WSDAPI) on Windows systems. The vulnerability is due to the service not properly handling a WSDAPI message with a maliciously crafted MIME header. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
McAfee Product Mitigation & Recommendations
Recommendations
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-063.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-063) Vulnerability in Web Service on Devices Could Allow Remote Code Execution (973565)
- Signature identifier:
- 7328
- Release date:
- 11/10/2009
Additional Resources
(MS09-063) Vulnerability in Web Service on Devices Could Allow Remote Code Execution (973565)
http://www.microsoft.com/technet/security/bulletin/ms09-063.mspx
All Information
Timeline -
11/10/2009
Vendor has provided a patch.
Description -
A remote code execution vulnerability exists in the Web Service on Devices API (WSDAPI) on Windows systems. The vulnerability is due to the service not properly handling a WSDAPI message with a maliciously crafted MIME header. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
McAfee Product Mitigation & Recommendations
Recommendations -
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-063.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-063) Vulnerability in Web Service on Devices Could Allow Remote Code Execution (973565)
- Signature identifier:
- 7328
- Release date:
- 11/10/2009
Additional Resources
Additional Resources -
(MS09-063) Vulnerability in Web Service on Devices Could Allow Remote Code Execution (973565)
http://www.microsoft.com/technet/security/bulletin/ms09-063.mspx
