Vulnerability Name:

CVE-2009-0901 (CCN-52044)

Assigned:2009-07-28
Published:2009-07-28
Updated:2018-10-12
Summary:The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold, and Visual C++ 2005 SP1 and 2008 Gold and SP1; and Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2; does not prevent VariantClear calls on an uninitialized VARIANT, which allows remote attackers to execute arbitrary code via a malformed stream to an ATL (1) component or (2) control, related to ATL headers and error handling, aka "ATL Uninitialized Object Vulnerability."
Please refer to this link http://www.microsoft.com/technet/security/Bulletin/MS09-035.mspx for mitigating factors and additional information.
CVSS v3 Severity:10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-94
Vulnerability Consequences:Gain Access
References:Source: MISC
Type: UNKNOWN
http://blogs.technet.com/srd/archive/2009/08/11/ms09-037-why-we-are-using-cve-s-already-used-in-ms09-035.aspx

Source: MITRE
Type: CNA
CVE-2009-0901

Source: CCN
Type: HP Security Bulletin HPSBMA02488 SSRT100013 rev.1
HP ProLiant Support Pack 8.30 for Windows, Remote Code Execution, Information Disclosure

Source: HP
Type: UNKNOWN
SSRT100013

Source: CCN
Type: SA35967
Microsoft Visual Studio Active Template Library Three Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
35967

Source: CCN
Type: SA36187
Microsoft Windows Various Components ATL Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
36187

Source: CCN
Type: SA36374
Adobe Flex Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
36374

Source: CCN
Type: SA36746
Novell GroupWise WebAccess "User.Theme.index" Cross-Site Scripting

Source: SECUNIA
Type: UNKNOWN
36746

Source: CCN
Type: SA37005
Microsoft Office ActiveX Controls Multiple Vulnerabilities

Source: CCN
Type: SA38496
Google Gadget ActiveX Control ATL Templates Vulnerability

Source: CCN
Type: SA38533
HP ProLiant Support Pack Visual C++ Redistributable Vulnerabilities

Source: CCN
Type: SA39004
F5 FirePass Active Template Library Vulnerabilities

Source: SUNALERT
Type: UNKNOWN
266108

Source: CCN
Type: Microsoft Security Bulletin MS13-068
Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (2756473)

Source: CCN
Type: Microsoft Security Bulletin MS14-082
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3017349)

Source: CCN
Type: Adobe Product Security Advisory APSA09-04
Security advisory for Adobe Flash Player

Source: CONFIRM
Type: Patch
http://www.adobe.com/support/security/advisories/apsa09-04.html

Source: CCN
Type: Adobe Product Security Bulletin APSB09-10
Security updates available for Adobe Flash Player, Adobe Reader and Acrobat

Source: CONFIRM
Type: UNKNOWN
http://www.adobe.com/support/security/bulletins/apsb09-10.html

Source: CCN
Type: Adobe Product Security Bulletin APSB09-11
Security update available for Shockwave Player

Source: CONFIRM
Type: Patch
http://www.adobe.com/support/security/bulletins/apsb09-11.html

Source: CONFIRM
Type: UNKNOWN
http://www.adobe.com/support/security/bulletins/apsb09-13.html

Source: CCN
Type: cisco-sa-20090728-activex
Active Template Library (ATL) Vulnerability

Source: CCN
Type: IBM Internet Security Systems Protection Advisory
Multiple Vulnerabilities in the Microsoft Visual Studio Active Template Library Could Allow Remote Code Execution

Source: CCN
Type: US-CERT VU#456745
ActiveX controls built with Microsoft ATL fail to properly handle initialization data

Source: CCN
Type: Microsoft Security Bulletin MS09-035
Vulnerabilities in Visual Studio Active Template Library Could Allow Remote Code Execution (969706)

Source: CCN
Type: Microsoft Security Bulletin MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution. (973908)

Source: CCN
Type: Microsoft Security Bulletin MS09-060
Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)

Source: CCN
Type: Microsoft Security Bulletin MS10-030
Vulnerability in Outlook Express and Windows Mail Could Allow Remote Code Execution (978542)

Source: CCN
Type: Microsoft Security Bulletin MS10-045
Vulnerability in Microsoft Office Outlook Could Allow Remote Code Execution (978212)

Source: CCN
Type: Microsoft Security Bulletin MS10-064
Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (2315011)

Source: CONFIRM
Type: UNKNOWN
http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1

Source: CCN
Type: OSVDB ID: 62438
Google Gadget ActiveX Microsoft ATL Template Unspecified Arbitrary Code Execution

Source: BID
Type: Patch
35832

Source: CCN
Type: BID-35832
Microsoft Visual Studio ATL 'VariantClear()' Remote Code Execution Vulnerability

Source: CCN
Type: BID-35846
Adobe Flash Player Active Template Library Remote Code Execution Vulnerability

Source: CCN
Type: BID-35847
Cisco Unity ActiveX Header Active Template Library Remote Code Execution Vulnerability

Source: CCN
Type: TLSA-2009-24
Multiple vulnerabilities exist in flash-player

Source: CERT
Type: US Government Resource
TA09-195A

Source: CERT
Type: US Government Resource
TA09-223A

Source: CERT
Type: US Government Resource
TA09-286A

Source: VUPEN
Type: UNKNOWN
ADV-2009-2034

Source: VUPEN
Type: UNKNOWN
ADV-2009-2232

Source: MS
Type: UNKNOWN
MS09-035

Source: MS
Type: UNKNOWN
MS09-037

Source: MS
Type: UNKNOWN
MS09-060

Source: XF
Type: UNKNOWN
ms-atl-header-code-execution(52044)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6289

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6311

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6373

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:7581

Source: SUSE
Type: SUSE-SA:2009:041
flash player remote code execution problems

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:visual_c++:2005:sp1_redistribution_pkg:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_c++:2008:redistribution_pkg:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_c++:2008:sp1_redistribution_pkg:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2005:sp1:64_bit_hosted_visual_c++_tools:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio_.net:2003:sp1:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:2005:sp3:media_center:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:server_2003:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:server_2003:sp2:itanium:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:server_2003:sp2:x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:*:x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp::sp2:x64:*:professional:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.28:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.70.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.34.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.35.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.69.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.20.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.28.0:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:sp1:x64:*:*:*:*:*
  • OR cpe:/a:adobe:flex:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.25:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.63:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.24.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.114.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.20:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio_.net:2003:sp1:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.39.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.112.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.12.10:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.0.584:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:air:1.5:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:*:*:*:*:*:*:itanium:*
  • OR cpe:/o:microsoft:windows_server_2008:*:*:*:*:*:*:x32:*
  • OR cpe:/o:microsoft:windows:xp:sp3:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:sp2:x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x32:*
  • OR cpe:/a:microsoft:visual_studio:2008:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.63::linux:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0::basic:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0::pro:*:*:*:*:*
  • OR cpe:/a:adobe:air:1.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.22.87:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:itanium:*
  • AND
  • cpe:/o:suse:suse_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:novell:linux_desktop:9:*:*:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:*:*:personal:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.45.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.47.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.48.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.115.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.31.0:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:unity_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:10.3:*:*:*:*:*:*:*
  • OR cpe:/h:f5:firepass:6.0:*:*:*:*:*:*:*
  • OR cpe:/h:f5:firepass:5.4:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.124.0:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:11.0:*:*:*:*:*:*:*
  • OR cpe:/h:f5:firepass:5.5:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.12.36:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.151.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.15.3:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20090901
    V
    		CVE-2009-0901
    2022-05-20
    oval:org.opensuse.security:def:10711
    P
    		Security update for MozillaThunderbird (Important)
    2022-01-12
    oval:org.opensuse.security:def:51768
    P
    		Security update for apache2 (Important)
    2022-01-12
    oval:org.opensuse.security:def:10663
    P
    		Security update for ffmpeg (Moderate)
    2021-10-26
    oval:org.opensuse.security:def:51662
    P
    		Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP3) (Important)
    2021-09-23
    oval:org.opensuse.security:def:10692
    P
    		Security update for ffmpeg (Important)
    2021-09-02
    oval:org.opensuse.security:def:51934
    P
    		Security update for libsndfile (Critical)
    2021-08-05
    oval:org.opensuse.security:def:5792
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:5770
    P
    		Security update for sqlite3 (Important)
    2021-07-14
    oval:org.opensuse.security:def:11465
    P
    		sysvinit-tools-2.88+-94.13 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:76596
    P
    		flash-player-11.2.202.406-1.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:11534
    P
    		flash-player-11.2.202.548-111.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:11487
    P
    		zoo-2.10-1020.62 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:11513
    P
    		cups-pk-helper-0.2.5-3.75 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:76830
    P
    		flash-player-11.2.202.548-111.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:17001
    P
    		flash-player-11.2.202.406-1.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:11535
    P
    		freerdp-1.0.2-7.9 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:10644
    P
    		Security update for the Linux Kernel (Important)
    2021-06-08
    oval:org.opensuse.security:def:48670
    P
    		flash-player-11.2.202.406-1.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:17049
    P
    		flash-player-11.2.202.548-111.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48718
    P
    		flash-player-11.2.202.548-111.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:11300
    P
    		flash-player-11.2.202.406-1.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:10677
    P
    		Security update for MozillaThunderbird (Moderate)
    2021-06-04
    oval:org.opensuse.security:def:6026
    P
    		Security update for slurm (Important)
    2021-05-31
    oval:org.opensuse.security:def:51896
    P
    		Security update for djvulibre (Important)
    2021-05-31
    oval:org.opensuse.security:def:38122
    P
    		Security update for djvulibre (Important)
    2021-05-19
    oval:org.opensuse.security:def:6004
    P
    		Security update for samba (Important)
    2021-05-04
    oval:org.opensuse.security:def:38103
    P
    		Security update for clamav (Important)
    2021-04-14
    oval:org.opensuse.security:def:52002
    P
    		Security update for python (Important)
    2021-02-11
    oval:org.opensuse.security:def:51723
    P
    		Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3) (Important)
    2021-02-10
    oval:org.opensuse.security:def:51485
    P
    		Security update for cyrus-sasl (Important)
    2020-12-28
    oval:org.opensuse.security:def:5344
    P
    		Security update for flac (Moderate)
    2020-12-24
    oval:org.opensuse.security:def:10584
    P
    		Security update for MozillaThunderbird (Important)
    2020-12-07
    oval:org.opensuse.security:def:51088
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)
    2020-12-07
    oval:org.opensuse.security:def:51089
    P
    		Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP2) (Important)
    2020-12-07
    oval:org.opensuse.security:def:4819
    P
    		Security update for apache2 (Important)
    2020-12-02
    oval:org.opensuse.security:def:4949
    P
    		Security update for spice-gtk (Moderate)
    2020-12-02
    oval:org.opensuse.security:def:5101
    P
    		Security update for the Linux Kernel (Important)
    2020-12-02
    oval:org.opensuse.security:def:5168
    P
    		Security update for nodejs8 (Critical)
    2020-12-02
    oval:org.opensuse.security:def:5302
    P
    		Security update for zstd (Moderate)
    2020-12-02
    oval:org.opensuse.security:def:5132
    P
    		Security update for samba (Important)
    2020-12-02
    oval:org.opensuse.security:def:5353
    P
    		Security update for apache2 (Moderate)
    2020-12-02
    oval:org.opensuse.security:def:4841
    P
    		Security update for 389-ds (Important)
    2020-12-02
    oval:org.opensuse.security:def:4968
    P
    		Security update for php7 (Moderate)
    2020-12-02
    oval:org.opensuse.security:def:5053
    P
    		Security update for the Linux Kernel (Important)
    2020-12-02
    oval:org.opensuse.security:def:5183
    P
    		Security update for mozilla-nss (Moderate)
    2020-12-02
    oval:org.opensuse.security:def:5335
    P
    		Security update for tomcat (Important)
    2020-12-02
    oval:org.opensuse.security:def:5366
    P
    		Security update for samba (Important)
    2020-12-02
    oval:org.opensuse.security:def:4887
    P
    		Security update for xen (Important)
    2020-12-02
    oval:org.opensuse.security:def:5043
    P
    		Security update for pacemaker (Important)
    2020-12-02
    oval:org.opensuse.security:def:5075
    P
    		Security update for rubygem-activesupport-5_1 (Critical)
    2020-12-02
    oval:org.opensuse.security:def:5202
    P
    		Security update for webkit2gtk3 (Important)
    2020-12-02
    oval:org.opensuse.security:def:4811
    P
    		Security update for apache2 (Moderate)
    2020-12-02
    oval:org.opensuse.security:def:5110
    P
    		Security update for rubygem-actionpack-5_1 (Important)
    2020-12-02
    oval:org.opensuse.security:def:4934
    P
    		Security update for libvirt (Important)
    2020-12-02
    oval:org.opensuse.security:def:5068
    P
    		Security update for samba (Moderate)
    2020-12-02
    oval:org.opensuse.security:def:5121
    P
    		Security update for the Linux Kernel (Important)
    2020-12-02
    oval:org.opensuse.security:def:5277
    P
    		Security update for spamassassin (Important)
    2020-12-02
    oval:org.opensuse.security:def:5045
    P
    		Security update for graphviz (Moderate)
    2020-12-02
    oval:org.opensuse.security:def:5119
    P
    		Security update for the Linux Kernel (Important)
    2020-12-02
    oval:org.opensuse.security:def:37367
    P
    		yast2-core on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37745
    P
    		busybox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:51322
    P
    		Security update for jasper (Low)
    2020-12-01
    oval:org.opensuse.security:def:10875
    P
    		aaa_base-malloccheck on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10582
    P
    		pam-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10738
    P
    		libgnutls-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52531
    P
    		Security update for munge (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52727
    P
    		Security update for the Linux Kernel (Live Patch 9 for SLE 15) (Important)
    2020-12-01
    oval:org.opensuse.security:def:54196
    P
    		flash-player on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:51111
    P
    		Security update for wireshark (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38055
    P
    		rsync on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38804
    P
    		sudo on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:51323
    P
    		Security update for vim (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52561
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:38214
    P
    		gv on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10506
    P
    		libidn-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37539
    P
    		libjbig2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37947
    P
    		libpulse-mainloop-glib0-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37451
    P
    		grub2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37835
    P
    		krb5-appl-clients on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10805
    P
    		libunrar-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37307
    P
    		ppc64-diag on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10629
    P
    		augeas-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10763
    P
    		libneon-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52612
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:10630
    P
    		Security update for xorg-x11-server (Important)
    2020-12-01
    oval:org.opensuse.security:def:10786
    P
    		librsvg-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52765
    P
    		Security update for the Linux Kernel (Live Patch 15 for SLE 15) (Important)
    2020-12-01
    oval:org.opensuse.security:def:51251
    P
    		Security update for djvulibre (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38094
    P
    		wpa_supplicant on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38846
    P
    		flash-player on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:51345
    P
    		Security update for freetype2 (Important)
    2020-12-01
    oval:org.opensuse.security:def:38852
    P
    		gnome-shell-calendar on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37308
    P
    		ppp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37640
    P
    		perl-Config-IniFiles on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38006
    P
    		mozilla-nspr-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10554
    P
    		libtiff-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37587
    P
    		libspice-server1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37995
    P
    		libz1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10814
    P
    		libxslt-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10853
    P
    		systemtap-sdt-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10514
    P
    		libksba-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52419
    P
    		Security update for libqt5-qtbase (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:53888
    P
    		Security update for LibreOffice (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37355
    P
    		xalan-j2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10811
    P
    		libxcb-composite0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52846
    P
    		Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP1) (Important)
    2020-12-01
    oval:org.opensuse.security:def:51489
    P
    		Security update for python3 (Important)
    2020-12-01
    oval:org.opensuse.security:def:52219
    P
    		Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52168
    P
    		Security update for java-11-openjdk (Important)
    2020-12-01
    oval:org.opensuse.security:def:38142
    P
    		bubblewrap on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38894
    P
    		flash-player on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37319
    P
    		radvd on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37697
    P
    		update-alternatives on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37356
    P
    		xdg-utils on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37688
    P
    		sysvinit-tools on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38054
    P
    		rrdtool on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10827
    P
    		ocaml on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10862
    P
    		xfig on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10536
    P
    		libraptor-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52493
    P
    		Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP2) (Important)
    2020-12-01
    oval:org.opensuse.security:def:53962
    P
    		flash-player on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10562
    P
    		libwmf-0_2-7 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52653
    P
    		Security update for the Linux Kernel (Live Patch 2 for SLE 15) (Important)
    2020-12-01
    oval:org.opensuse.security:def:54122
    P
    		squashfs on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52327
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:38166
    P
    		dbus-1-glib on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52453
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38170
    P
    		dovecot22 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37403
    P
    		cracklib on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37787
    P
    		ft2demos on GA media (Moderate)
    2020-12-01
    oval:org.mitre.oval:def:7581
    V
    		ATL Uninitialized Object Vulnerability
    2015-08-10
    BACK
    microsoft visual c++ 2005 sp1_redistribution_pkg
    microsoft visual c++ 2008 redistribution_pkg
    microsoft visual c++ 2008 sp1_redistribution_pkg
    microsoft visual studio 2005 sp1
    microsoft visual studio 2005 sp1
    microsoft visual studio 2008
    microsoft visual studio 2008 sp1
    microsoft visual studio .net 2003 sp1
    microsoft windows 2000 - sp4
    microsoft windows xp sp2
    microsoft windows xp 2005 sp3
    microsoft windows vista *
    microsoft windows server_2003 sp2
    microsoft windows server_2003 sp2
    microsoft windows server_2003 sp2
    microsoft windows vista -
    microsoft windows xp sp2
    microsoft visual studio 2005 sp1
    adobe flash player 9.0.28
    adobe flash player 7.0.70.0
    adobe flash player 8.0.34.0
    adobe flash player 8.0.35.0
    adobe flash player 7.0.69.0
    adobe flash player 8.0
    adobe flash player 9.0.16
    adobe flash player 9.0.20.0
    adobe flash player 9.0.28.0
    microsoft windows vista - sp1
    microsoft windows vista - sp1
    adobe flex 3.0
    adobe flash player 7.0
    adobe flash player 7.0.1
    adobe flash player 7.0.25
    adobe flash player 7.0.63
    adobe flash player 7.1
    adobe flash player 7.1.1
    adobe flash player 7.2
    adobe flash player 8.0.24.0
    adobe flash player 9.0.114.0
    adobe flash player 9.0.20
    microsoft visual studio .net 2003 sp1
    adobe flash player 8.0.39.0
    adobe flash player 9.0.112.0
    adobe flash player 10.0.12.10
    adobe flash player 10.0.0.584
    adobe air 1.5
    microsoft windows server 2008 -
    microsoft windows server 2008 -
    microsoft windows xp sp3
    microsoft windows vista - sp2
    microsoft windows vista - sp2
    microsoft windows server 2008 sp2
    microsoft visual studio 2008
    microsoft visual studio 2008 sp1
    adobe flash player 7.0.63
    adobe flash player 8.0
    adobe flash player 8.0
    adobe air 1.5.1
    adobe flash player 10.0.22.87
    microsoft windows server 2008
    suse suse linux 9.0
    novell linux desktop 9
    turbolinux turbolinux personal *
    adobe flash player 9.0.45.0
    adobe flash player 9.0.47.0
    adobe flash player 9.0.48.0
    adobe flash player 9.0.115.0
    adobe flash player 9.0.31.0
    cisco unity server 4.0
    novell opensuse 10.3
    f5 firepass 6.0
    f5 firepass 5.4
    adobe flash player 9.0.124.0
    novell opensuse 11.0
    f5 firepass 5.5
    adobe flash player 9.0
    adobe flash player 10
    adobe flash player 10.0.12.36
    adobe flash player 9.0.151.0
    adobe flash player 10.0.15.3