Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:5052
HistoryApr 16, 2009 - 12:00 a.m.

Microsoft Windows WinHTTP服务整数下溢漏洞(MS09-013)

2009-04-1600:00:00
Root
www.seebug.org
14

0.613 Medium

EPSS

Percentile

97.8%

JSON

BUGTRAQ ID: 34435
CVE(CAN) ID: CVE-2009-0086

Microsoft Windows是微软发布的非常流行的操作系统。

Windows HTTP服务处理远程Web服务器所返回的特定值的方式存在整数下溢漏洞。如果用户受骗访问了恶意服务器的话,就可以触发这个溢出,导致在用户机器上执行任意代码。

Microsoft Windows XP x64 SP2
Microsoft Windows XP x64
Microsoft Windows XP SP3
Microsoft Windows XP SP2
Microsoft Windows Vista SP1
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003
Microsoft Windows 2000SP4
厂商补丁:

Microsoft

Microsoft已经为此发布了一个安全公告(MS09-013)以及相应补丁:
MS09-013:Vulnerabilities in Windows HTTP Services Could Allow Remote Code Execution (960803)
链接:<a href=“http://www.microsoft.com/technet/security/bulletin/MS09-013.mspx?pf=true” target=“_blank”>http://www.microsoft.com/technet/security/bulletin/MS09-013.mspx?pf=true</a>

Related

cvelist 1
nvd 1
prion 1
checkpoint_advisories 2
cve 1
securityvulns 2
openvas 2
nessus 2
cvelist
cvelist
CVE-2009-0086
2009-04-15 03:49:00
nvd
nvd
CVE-2009-0086
2009-04-15 08:00:00
prion
prion
Integer overflow
2009-04-15 08:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows HTTP Services Chunked Encoding Integer Underflow (MS09-013; CVE-2009-0086)
2009-04-14 00:00:00
Microsoft Windows HTTP Services Chunked Encoding Integer Overflow (MS09-013; CVE-2009-0086)
2012-04-30 00:00:00
cve
cve
CVE-2009-0086
2009-04-15 08:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS09-013 - Critical Vulnerabilities in Windows HTTP Services Could Allow Remote Code Execution &#40;960803&#41;
2009-04-14 00:00:00
Microsoft Windows WinHTTP servive multiple security vulnerabilities
2009-04-14 00:00:00
openvas
openvas
Windows HTTP Services Could Allow Remote Code Execution Vulnerabilities (960803)
2009-04-15 00:00:00
Windows HTTP Services Could Allow Remote Code Execution Vulnerabilities (960803)
2009-04-15 00:00:00
nessus
nessus
MS09-013: Vulnerabilities in Windows HTTP Services Could Allow Remote Code Execution (960803)
2009-04-15 00:00:00
Windows Server 2008 Critical RCE Vulnerabilities (uncredentialed) (PCI/DSS)
2018-04-03 00:00:00

0.613 Medium

EPSS

Percentile

97.8%

JSON
Related for SSV:5052
cvelist1nvd1prion1checkpoint_advisories2cve1securityvulns2openvas2nessus2