5 matches found
Microsoft Indexing Service Loop Counter Underwrap Code Execution - Ver2 (CVE-2009-2507)
A remote code execution vulnerability has been reported in the Microsoft Indexing Service. A remote attacker could exploit this vulnerability by enticing a user to visit a malicious Web page. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on...
Microsoft Windows索引服务ActiveX控件内存破坏漏洞(MS09-057)
BUGTRAQ ID: 36629 CVECAN ID: CVE-2009-2507 Windows是微软发布的非常流行的操作系统。 Windows的索引服务所包含的ActiveX控件未正确处理特制Web内容,导致Windows系统上的索引服务中存在内存破坏漏洞。成功利用此漏洞的攻击者可以完全控制受影响的系统。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Server 2003 SP2 Microsoft Windows Server 2003 SP1 Microsoft Windows...
CVE-2009-2507
CVE-2009-2507 describes a remote code execution via an ActiveX control in the Microsoft Windows Indexing Service. The vulnerability arises because the Indexing Service ActiveX component does not properly handle specially crafted URLs, enabling a remote attacker to load/execute arbitrary code on a...
Microsoft Indexing Service ActiveX Memory Corruption (MS09-057; CVE-2009-2507)
The Microsoft Windows Indexing Service is a base service that extracts content from files and constructs an indexed catalog to facilitate efficient and rapid searching. A remote code execution vulnerability has been reported in the Microsoft Indexing Service. The vulnerability is caused by an...
MS09-057: Vulnerability in Indexing Service Could Allow Remote Code Execution (969059)
The remote host contains the ixsso.dll ActiveX control. This control is included with the Indexing Service. The version of this control installed on the remote host reportedly has an arbitrary code execution vulnerability. A remote attacker could exploit this by tricking a user into requesting a...