Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft DHTML ActiveX code execution
Published:09.09.2009
Source:
SecurityVulns ID:10213
Type:client
Threat Level:
7/10
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
CVE:CVE-2009-2519 (The DHTML Editing Component ActiveX control in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly format HTML markup, which allows remote attackers to execute arbitrary code via a crafted web site that triggers "system state" corruption, aka "DHTML Editing Component ActiveX Control Vulnerability.")
Original documentdocumentMICROSOFT, Microsoft Security Bulletin MS09-046 - Critical Vulnerability in DHTML Editing Component ActiveX Control Could Allow Remote Code Execution (956844) (09.09.2009)
Files:Microsoft Security Bulletin MS09-046 - Critical Vulnerability in DHTML Editing Component ActiveX Control Could Allow Remote Code Execution (956844)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod