6 matches found
Mirosoft Windows打印后台程序DLL库加载漏洞(MS09-022)
BUGTRAQ ID: 35209 CVECAN ID: CVE-2009-0230 Microsoft Windows是微软发布的非常流行的操作系统。 Windows打印后台处理程序没有正确地验证可能加载DLL的路径。如果远程攻击者将恶意的DLL存储在了打印后台程序可访问的位置上然后向受影响的系统发送了特制的RPC消息的话,就可能导致打印后台程序加载恶意的DLL并以提升的权限执行代码。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista SP2 Microsoft Windows Vista...
Immunity Canvas: MS09_022_LOADDLL
Name| ms09022loaddll ---|--- CVE| CVE-2009-0230 Exploit Pack| CANVAS Description| Microsoft Windows Print Spooler Arbitrary DLL Loading Notes| CVE Name: CVE-2009-0230 VENDOR: Microsoft MSADV: MS09-022-LOADDLL Repeatability: One shot Note: Valid credentials of a user with "Manage Printer" privileg...
CVE-2009-0230
CVE-2009-0230 : A remote authenticated elevation-of-privilege vulnerability in the Windows Print Spooler allowing an arbitrary DLL to be loaded via a crafted RPC message. Affected: Windows 2000 SP4, XP SP2/SP3, Server 2003 SP2, Vista (Gold, SP1, SP2), and Server 2008 SP2. Exploitation requires th...
Vulnerabilities in Print Spooler Could Allow Remote Code Execution (961501)
This host is missing a critical security update according to Microsoft Bulletin MS09-022. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS09-022: Vulnerabilities in Windows Print Spooler Could Allow Remote Code Execution (961501)
The version of the Print Spooler service on the remote Windows host is affected by one or more of the following vulnerabilities : - A buffer overflow vulnerability could allow an unauthenticated, remote attacker to execute arbitrary code with SYSTEM privileges. CVE-2009-0228 - Using a specially...
Microsoft Windows Print Spooler LoadLibrary Information Disclosure (MS09-022; CVE-2009-0230)
The Print Spooler service manages the printing process, which includes such tasks as retrieving the location of the correct printer driver, loading that driver, spooling high-level function calls into a print job, and scheduling print jobs. An elevation of privilege vulnerability has been reporte...