Lucene search
MicrosoftCVELIST:CVE-2009-0231HistoryJul 15, 2009 - 3:00 p.m.
CVE-2009-0231
2009-07-1515:00:00
microsoft
www.cve.org
The Embedded OpenType (EOT) Font Engine (T2EMBED.DLL) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via a crafted name table in a data record that triggers an integer truncation and a heap-based buffer overflow, aka “Embedded OpenType Font Heap Overflow Vulnerability.”
References
labs.idefense.com/intelligence/vulnerabilities/display.php?id=811
osvdb.org/55842
www.securitytracker.com/id?1022543
www.us-cert.gov/cas/techalerts/TA09-195A.html
www.vupen.com/english/advisories/2009/1887
docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-029
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5457
Related
checkpoint_advisories
checkpoint_advisories
nvd
nvd
CVE-2009-0231
2009-07-15 15:30:01
CVE-2009-3020
2009-08-31 16:30:09
cve
cve
CVE-2009-0231
2009-07-15 15:30:01
CVE-2009-3020
2009-08-31 16:30:09
prion
prion
Heap overflow
2009-07-15 15:30:00
Design/Logic Flaw
2009-08-31 16:30:00
securityvulns
securityvulns
iDefense Security Advisory 07.15.09: Microsoft Embedded OpenType Font Engine (T2EMBED.DLL) Heap Buffer Overflow Vulnerability
2009-07-16 00:00:00
openvas
openvas
nessus
nessus
cvelist
cvelist
CVE-2009-3020
2009-08-31 16:00:00