Vulnerability Name:

CVE-2009-0228 (CCN-50763)

Assigned:2009-06-09
Published:2009-06-09
Updated:2018-10-12
Summary:Stack-based buffer overflow in the EnumeratePrintShares function in Windows Print Spooler Service (win32spl.dll) in Microsoft Windows 2000 SP4 allows remote printer servers to execute arbitrary code via a crafted ShareName in a response to an RPC request, related to "printing data structures," aka "Buffer Overflow in Print Spooler Vulnerability."
CVSS v3 Severity:10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2009-0228

Source: IDEFENSE
Type: UNKNOWN
20090609 Microsoft Windows 2000 Print Spooler Remote Stack Buffer Overflow Vulnerability

Source: OSVDB
Type: UNKNOWN
54932

Source: CCN
Type: SA35365
Microsoft Windows Print Spooler Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
35365

Source: CCN
Type: SECTRACK ID: 1022352
Windows Print Spooler Lets Remote Users Execute Arbitrary Code and Local Users Read Arbitrary Files

Source: CONFIRM
Type: UNKNOWN
http://support.avaya.com/elmodocs2/security/ASA-2009-217.htm

Source: CCN
Type: ASA-2009-217
MS09-022 Vulnerabilities in Windows Print Spooler Could Allow Remote Code Execution (961501)

Source: CCN
Type: NORTEL BULLETIN ID: 2009009558, Rev 1
Nortel Response to Microsoft Security Bulletin MS09-022

Source: CCN
Type: Microsoft Security Bulletin MS12-054
Vulnerabilities in Windows Networking Components Could Allow Remote Code Execution (2733594)

Source: CCN
Type: Microsoft Security Bulletin MS16-087
Security Update for the Microsoft Print Spooler (3170005)

Source: CCN
Type: Microsoft Security Bulletin MS09-022
Vulnerabilities in the Windows Print Spooler Could Allow Remote Code Execution (961501)

Source: CCN
Type: OSVDB ID: 54932
Microsoft Windows Print Spooler win32spl.dll EnumeratePrintShares Function Remote Overflow

Source: BID
Type: UNKNOWN
35206

Source: CCN
Type: BID-35206
Microsoft Windows Print Spooler 'EnumeratePrintShares()' Remote Stack Buffer Overflow Vulnerability

Source: SECTRACK
Type: UNKNOWN
1022352

Source: CERT
Type: US Government Resource
TA09-160A

Source: VUPEN
Type: UNKNOWN
ADV-2009-1541

Source: MS
Type: UNKNOWN
MS09-022

Source: XF
Type: UNKNOWN
win-printspooler-bo(50763)

Source: CCN
Type: iDefense PUBLIC ADVISORY: 06.09.09
Microsoft Windows 2000 Print Spooler Remote Stack Buffer Overflow Vulnerability

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6317

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:6317
    V
    		Buffer Overflow in Print Spooler Vulnerability
    2009-07-21
    BACK
    microsoft windows 2000 * sp4
    microsoft windows 2000 - sp4