Vulnerability CVE-2009-0229 - CERT Civis.Net

Vulnerability Name:

CVE-2009-0229 (CCN-50764)

Assigned:

2009-06-09

Published:

2009-06-09

Updated:

2018-10-30

Summary:

The Windows Printing Service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows local users to read arbitrary files via a crafted separator page, aka "Print Spooler Read File Vulnerability."

CVSS v3 Severity:

2.8 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): None Availibility (A): None

1.7 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:N/A:N)
1.3 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2009-0229

Source: OSVDB
Type: UNKNOWN
54933

Source: CCN
Type: SA35365
Microsoft Windows Print Spooler Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
35365

Source: CCN
Type: SECTRACK ID: 1022352
Windows Print Spooler Lets Remote Users Execute Arbitrary Code and Local Users Read Arbitrary Files

Source: CONFIRM
Type: UNKNOWN
http://support.avaya.com/elmodocs2/security/ASA-2009-217.htm

Source: CCN
Type: ASA-2009-217
MS09-022 Vulnerabilities in Windows Print Spooler Could Allow Remote Code Execution (961501)

Source: CCN
Type: NORTEL BULLETIN ID: 2009009558, Rev 1
Nortel Response to Microsoft Security Bulletin MS09-022

Source: CCN
Type: Microsoft Security Bulletin MS12-054
Vulnerabilities in Windows Networking Components Could Allow Remote Code Execution (2733594)

Source: CCN
Type: Microsoft Security Bulletin MS16-087
Security Update for the Microsoft Print Spooler (3170005)

Source: CCN
Type: Microsoft Security Bulletin MS09-022
Vulnerabilities in the Windows Print Spooler Could Allow Remote Code Execution (961501)

Source: CCN
Type: OSVDB ID: 54933
Microsoft Windows Print Spooler Crafted Separator Page Arbitrary Local File Disclosure

Source: BID
Type: UNKNOWN
35208

Source: CCN
Type: BID-35208
Microsoft Windows Print Spooler Local Information Disclosure Vulnerability

Source: SECTRACK
Type: UNKNOWN
1022352

Source: CERT
Type: US Government Resource
TA09-160A

Source: VUPEN
Type: UNKNOWN
ADV-2009-1541

Source: MS
Type: UNKNOWN
MS09-022

Source: XF
Type: UNKNOWN
win-printspooler-information-disclosure(50764)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:5815

Vulnerable Configuration:

Configuration 1:

cpe:/o:microsoft:windows_2000:sp4:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:sp2:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:sp2:*:itanium:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:sp2:*:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:*:*:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:-:sp2:itanium:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x32:*

OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x32:*

OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x64:*

OR cpe:/o:microsoft:windows_vista:*:sp1:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:*:sp2:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:gold:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:sp1:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:sp2:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:-:sp2:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*

Configuration CCN 1:

cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:server_2003:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:server_2003:sp2:itanium:*:*:*:*:*

OR cpe:/o:microsoft:windows:server_2003:sp2:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:-:*:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp::sp2:x64:*:professional:*:*:*

OR cpe:/o:microsoft:windows_vista:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:-:sp1:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:*:*:*:*:*:*:itanium:*

OR cpe:/o:microsoft:windows_server_2008:*:*:*:*:*:*:x32:*

OR cpe:/o:microsoft:windows_server_2008:*:*:*:*:*:*:x64:*

OR cpe:/o:microsoft:windows:xp:sp3:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:-:sp2:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x32:*

OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x64:*

OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:itanium:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:5815	V	Print Spooler Read File Vulnerability	2014-03-03