Vulnerability Name:

CVE-2009-2493 (CCN-52047)

Assigned:2009-07-28
Published:2009-07-28
Updated:2018-10-12
Summary:The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1; and Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2; does not properly restrict use of OleLoadFromStream in instantiating objects from data streams, which allows remote attackers to execute arbitrary code via a crafted HTML document with an ATL (1) component or (2) control, related to ATL headers and bypassing security policies, aka "ATL COM Initialization Vulnerability."
CVSS v3 Severity:10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-264
Vulnerability Consequences:Gain Access
References:Source: MISC
Type: Broken Link
http://blogs.technet.com/srd/archive/2009/08/11/ms09-037-why-we-are-using-cve-s-already-used-in-ms09-035.aspx

Source: MITRE
Type: CNA
CVE-2009-2493

Source: CCN
Type: HP Security Bulletin HPSBMA02488 SSRT100013 rev.1
HP ProLiant Support Pack 8.30 for Windows, Remote Code Execution, Information Disclosure

Source: SUSE
Type: Third Party Advisory
SUSE-SA:2009:053

Source: HP
Type: Third Party Advisory
SSRT100013

Source: CCN
Type: SA35967
Microsoft Visual Studio Active Template Library Three Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
35967

Source: CCN
Type: SA36187
Microsoft Windows Various Components ATL Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
36187

Source: CCN
Type: SA36374
Adobe Flex Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
36374

Source: CCN
Type: SA36746
Novell GroupWise WebAccess "User.Theme.index" Cross-Site Scripting

Source: SECUNIA
Type: UNKNOWN
36746

Source: CCN
Type: SA36993
Reflection for Secure IT Active Template Library Vulnerabilities

Source: CCN
Type: SA36997
Microsoft Windows ActiveX Controls ATL "OleLoadFromStream()" Vulnerability

Source: CCN
Type: SA37005
Microsoft Office ActiveX Controls Multiple Vulnerabilities

Source: CCN
Type: SA38533
HP ProLiant Support Pack Visual C++ Redistributable Vulnerabilities

Source: CCN
Type: SA38567
OpenOffice.org 2 Multiple Vulnerabilities

Source: CCN
Type: SA38568
OpenOffice.org 3 Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
38568

Source: CCN
Type: SA39004
F5 FirePass Active Template Library Vulnerabilities

Source: CCN
Type: SA41818
Oracle Open Office Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
41818

Source: SUNALERT
Type: Broken Link
264648

Source: SUNALERT
Type: Broken Link
266108

Source: SUNALERT
Type: Broken Link
1020775

Source: CCN
Type: Attachmate Technical Note 2471
Reflection for Secure IT Windows Client 7.1 Service Pack 2 (SP2) Release Notes

Source: CCN
Type: Microsoft Security Bulletin MS11-099
Cumulative Security Update for Internet Explorer (2618444)

Source: CCN
Type: Microsoft Security Bulletin MS12-010
Cumulative Security Update for Internet Explorer (2647516)

Source: CCN
Type: Microsoft Security Bulletin MS12-023
Cumulative Security Update for Internet Explorer (2675157)

Source: CCN
Type: Microsoft Security Bulletin MS12-037
Cumulative Security Update for Internet Explorer (2699988)

Source: CCN
Type: Microsoft Security Bulletin MS12-044
Cumulative Security Update for Internet Explorer (2719177)

Source: CCN
Type: Microsoft Security Bulletin MS12-052
Cumulative Security Update for Internet Explorer (2722913)

Source: CCN
Type: Microsoft Security Bulletin MS13-068
Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (2756473)

Source: CCN
Type: Microsoft Security Bulletin MS14-082
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3017349)

Source: CCN
Type: Adobe Product Security Advisory APSA09-04
Security advisory for Adobe Flash Player

Source: CONFIRM
Type: Patch, Third Party Advisory
http://www.adobe.com/support/security/advisories/apsa09-04.html

Source: CCN
Type: Adobe Product Security Bulletin APSB09-10
Security updates available for Adobe Flash Player, Adobe Reader and Acrobat

Source: CONFIRM
Type: Third Party Advisory
http://www.adobe.com/support/security/bulletins/apsb09-10.html

Source: CCN
Type: Adobe Product Security Bulletin APSB09-11
Security update available for Shockwave Player

Source: CONFIRM
Type: Patch, Third Party Advisory
http://www.adobe.com/support/security/bulletins/apsb09-11.html

Source: CONFIRM
Type: Third Party Advisory
http://www.adobe.com/support/security/bulletins/apsb09-13.html

Source: CCN
Type: cisco-sa-20090728-activex
Active Template Library (ATL) Vulnerability

Source: CCN
Type: IBM Internet Security Systems Protection Advisory
Multiple Vulnerabilities in the Microsoft Visual Studio Active Template Library Could Allow Remote Code Execution

Source: CCN
Type: Microsoft Security Bulletin MS09-035
Vulnerabilities in Visual Studio Active Template Library Could Allow Remote Code Execution (969706)

Source: CCN
Type: Microsoft Security Bulletin MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution. (973908)

Source: CCN
Type: Microsoft Security Bulletin MS09-060
Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)

Source: CCN
Type: Microsoft Security Bulletin MS09-072
Cumulative Security Update for Internet Explorer (976325)

Source: CCN
Type: Microsoft Security Bulletin MS10-002
Cumulative Security Update for Internet Explorer (978207)

Source: CCN
Type: Microsoft Security Bulletin MS10-018
Cumulative Security Update for Internet Explorer (980182)

Source: CCN
Type: Microsoft Security Bulletin MS10-030
Vulnerability in Outlook Express and Windows Mail Could Allow Remote Code Execution (978542)

Source: CCN
Type: Microsoft Security Bulletin MS10-035
Cumulative Security Update for Internet Explorer (982381)

Source: CCN
Type: Microsoft Security Bulletin MS10-045
Vulnerability in Microsoft Office Outlook Could Allow Remote Code Execution (978212)

Source: CCN
Type: Microsoft Security Bulletin MS10-053
Cumulative Security Update for Internet Explorer (2183461)

Source: CCN
Type: Microsoft Security Bulletin MS10-064
Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (2315011)

Source: CCN
Type: Microsoft Security Bulletin MS10-071
Cumulative Security Update for Internet Explorer (2360131)

Source: CCN
Type: Microsoft Security Bulletin MS10-090
Cumulative Security Update for Internet Explorer (2416400)

Source: CCN
Type: Microsoft Security Bulletin MS11-003
Cumulative Security Update for Internet Explorer (2482017)

Source: CCN
Type: Microsoft Security Bulletin MS11-018
Cumulative Security Update for Internet Explorer (2497640)

Source: CCN
Type: Microsoft Security Bulletin MS11-050
Cumulative Security Update for Internet Explorer (2530548)

Source: CCN
Type: Microsoft Security Bulletin MS11-057
Cumulative Security Update for Internet Explorer (2559049)

Source: CCN
Type: Microsoft Security Bulletin MS11-081
Cumulative Security Update for Internet Explorer (2586448)

Source: CONFIRM
Type: Third Party Advisory
http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1

Source: CCN
Type: OpenOffice Web Site
OpenOffice.org 3 for Windows bundles a vulnerable version of MSVC Runtime

Source: CONFIRM
Type: Third Party Advisory
http://www.openoffice.org/security/cves/CVE-2009-2493.html

Source: CCN
Type: BID-35828
Microsoft Visual Studio Active Template Library COM Object Remote Code Execution Vulnerability

Source: CCN
Type: BID-35845
Adobe Shockwave Player Active Template Library Remote Code Execution Vulnerability

Source: CCN
Type: BID-35846
Adobe Flash Player Active Template Library Remote Code Execution Vulnerability

Source: CCN
Type: BID-35847
Cisco Unity ActiveX Header Active Template Library Remote Code Execution Vulnerability

Source: CCN
Type: BID-36652
Attachmate Reflection for Secure IT Active Template Library Remote Code Execution Vulnerabilities

Source: CCN
Type: TLSA-2009-24
Multiple vulnerabilities exist in flash-player

Source: CERT
Type: Third Party Advisory, US Government Resource
TA09-195A

Source: CERT
Type: Third Party Advisory, US Government Resource
TA09-223A

Source: CERT
Type: Third Party Advisory, US Government Resource
TA09-286A

Source: CERT
Type: Third Party Advisory, US Government Resource
TA09-342A

Source: VUPEN
Type: UNKNOWN
ADV-2009-2034

Source: VUPEN
Type: UNKNOWN
ADV-2009-2232

Source: VUPEN
Type: UNKNOWN
ADV-2010-0366

Source: MS
Type: UNKNOWN
MS09-035

Source: MS
Type: UNKNOWN
MS09-037

Source: MS
Type: UNKNOWN
MS09-055

Source: MS
Type: UNKNOWN
MS09-060

Source: MS
Type: UNKNOWN
MS09-072

Source: XF
Type: UNKNOWN
ms-atl-object-code-execution(52047)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6245

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6304

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6421

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6473

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6621

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6716

Source: SUSE
Type: SUSE-SA:2009:041
flash player remote code execution problems

Source: SUSE
Type: SUSE-SA:2009:053
IBM Java 6 security update

Source: SUSE
Type: SUSE-SA:2010:002
IBM Java 5 security update

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:visual_c++:2005:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_c++:2008:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_c++:2008:sp1:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/a:microsoft:visual_studio:2003:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:2005:sp3:media_center:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:server_2003:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:server_2003:sp2:itanium:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:server_2003:sp2:x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:*:x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp::sp2:x64:*:professional:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:sp1:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio_.net:2003:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:*:*:*:*:*:*:itanium:*
  • OR cpe:/o:microsoft:windows_server_2008:*:*:*:*:*:*:x32:*
  • OR cpe:/o:microsoft:windows:xp:sp3:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:sp2:x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x32:*
  • OR cpe:/a:microsoft:visual_studio:2008:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:itanium:*
  • AND
  • cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:6.0:sp1:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:novell:linux_desktop:9:*:*:*:*:*:*:*
  • OR cpe:/o:novell:suse_linux_enterprise_server:10:sp2:itanium_ia64:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:*:*:personal:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.28:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.70.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.34.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.35.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.45.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.47.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.48.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.69.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.115.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.20.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.28.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.31.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flex:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.25:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.63:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.24.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.114.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.20:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.0.1:sp4:*:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:unity_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:10.3:*:*:*:*:*:*:*
  • OR cpe:/h:f5:firepass:6.0:*:*:*:*:*:*:*
  • OR cpe:/h:f5:firepass:5.4:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.124.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.39.0:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:11.0:*:*:*:*:*:*:*
  • OR cpe:/o:novell:suse_linux_enterprise_server:10:sp2:itanium_ia64:*:*:*:*:*
  • OR cpe:/h:f5:firepass:5.5:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.112.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.12.10:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.0.584:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.12.36:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.151.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.15.3:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:air:1.5:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.63::linux:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0::basic:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0::pro:*:*:*:*:*
  • OR cpe:/a:adobe:air:1.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.22.87:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:52002
    P
    		Security update for haproxy (Critical)
    2023-02-14
    oval:org.opensuse.security:def:51934
    P
    		Security update for python3 (Important)
    2022-10-06
    oval:org.opensuse.security:def:5302
    P
    		Security update for postgresql12 (Important) (in QA)
    2022-08-31
    oval:org.opensuse.security:def:5335
    P
    		Security update for postgresql10 (Important)
    2022-08-26
    oval:org.opensuse.security:def:5277
    P
    		Security update for the Linux Kernel (Important)
    2022-06-20
    oval:org.opensuse.security:def:20092493
    V
    		CVE-2009-2493
    2022-05-20
    oval:org.opensuse.security:def:6026
    P
    		Security update for xen (Moderate)
    2022-05-03
    oval:org.opensuse.security:def:5366
    P
    		Security update for flac (Moderate)
    2022-03-14
    oval:org.opensuse.security:def:5353
    P
    		Security update for php72 (Moderate)
    2022-02-25
    oval:org.opensuse.security:def:5344
    P
    		Security update for xen (Important)
    2022-02-17
    oval:org.opensuse.security:def:6004
    P
    		Security update for MozillaFirefox (Important)
    2022-01-18
    oval:org.opensuse.security:def:10711
    P
    		Security update for MozillaThunderbird (Important)
    2022-01-12
    oval:org.opensuse.security:def:51768
    P
    		Security update for apache2 (Important)
    2022-01-12
    oval:org.opensuse.security:def:5168
    P
    		Security update for mozilla-nss (Important)
    2021-12-06
    oval:org.opensuse.security:def:10663
    P
    		Security update for ffmpeg (Moderate)
    2021-10-26
    oval:org.opensuse.security:def:5132
    P
    		Security update for the Linux Kernel (Important)
    2021-10-12
    oval:org.opensuse.security:def:5121
    P
    		Security update for the Linux Kernel (Important)
    2021-09-23
    oval:org.opensuse.security:def:51662
    P
    		Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP3) (Important)
    2021-09-23
    oval:org.opensuse.security:def:5119
    P
    		Security update for MozillaFirefox (Important)
    2021-09-22
    oval:org.opensuse.security:def:5110
    P
    		Security update for openssl-1_0_0 (Low)
    2021-09-09
    oval:org.opensuse.security:def:5101
    P
    		Security update for openexr (Important)
    2021-09-02
    oval:org.opensuse.security:def:10692
    P
    		Security update for ffmpeg (Important)
    2021-09-02
    oval:org.opensuse.security:def:5792
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:5770
    P
    		Security update for sqlite3 (Important)
    2021-07-14
    oval:org.opensuse.security:def:5075
    P
    		Security update for the Linux Kernel (Important)
    2021-07-14
    oval:org.opensuse.security:def:5068
    P
    		Security update for libgcrypt (Important)
    2021-06-24
    oval:org.opensuse.security:def:11465
    P
    		sysvinit-tools-2.88+-94.13 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:76596
    P
    		flash-player-11.2.202.406-1.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:11534
    P
    		flash-player-11.2.202.548-111.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:11487
    P
    		zoo-2.10-1020.62 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:11513
    P
    		cups-pk-helper-0.2.5-3.75 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:76830
    P
    		flash-player-11.2.202.548-111.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:17001
    P
    		flash-player-11.2.202.406-1.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:11535
    P
    		freerdp-1.0.2-7.9 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:10644
    P
    		Security update for the Linux Kernel (Important)
    2021-06-08
    oval:org.opensuse.security:def:48670
    P
    		flash-player-11.2.202.406-1.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:17049
    P
    		flash-player-11.2.202.548-111.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48718
    P
    		flash-player-11.2.202.548-111.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:11300
    P
    		flash-player-11.2.202.406-1.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:5053
    P
    		Security update for gstreamer-plugins-bad (Important)
    2021-06-07
    oval:org.opensuse.security:def:10677
    P
    		Security update for MozillaThunderbird (Moderate)
    2021-06-04
    oval:org.opensuse.security:def:51896
    P
    		Security update for djvulibre (Important)
    2021-05-31
    oval:org.opensuse.security:def:5045
    P
    		Security update for postgresql10 (Moderate)
    2021-05-27
    oval:org.opensuse.security:def:5043
    P
    		Security update for curl (Moderate)
    2021-05-26
    oval:org.opensuse.security:def:38122
    P
    		Security update for djvulibre (Important)
    2021-05-19
    oval:org.opensuse.security:def:38103
    P
    		Security update for clamav (Important)
    2021-04-14
    oval:org.opensuse.security:def:5202
    P
    		Security update for openssl-1_1 (Important)
    2021-03-25
    oval:org.opensuse.security:def:5183
    P
    		Security update for ImageMagick (Moderate)
    2021-02-19
    oval:org.opensuse.security:def:51723
    P
    		Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3) (Important)
    2021-02-10
    oval:org.opensuse.security:def:51485
    P
    		Security update for cyrus-sasl (Important)
    2020-12-28
    oval:org.opensuse.security:def:4968
    P
    		Security update for PackageKit (Low)
    2020-12-22
    oval:org.opensuse.security:def:10584
    P
    		Security update for MozillaThunderbird (Important)
    2020-12-07
    oval:org.opensuse.security:def:51088
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)
    2020-12-07
    oval:org.opensuse.security:def:51089
    P
    		Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP2) (Important)
    2020-12-07
    oval:org.opensuse.security:def:4819
    P
    		Security update for apache2 (Important)
    2020-12-02
    oval:org.opensuse.security:def:4949
    P
    		Security update for spice-gtk (Moderate)
    2020-12-02
    oval:org.opensuse.security:def:4841
    P
    		Security update for 389-ds (Important)
    2020-12-02
    oval:org.opensuse.security:def:4887
    P
    		Security update for xen (Important)
    2020-12-02
    oval:org.opensuse.security:def:4811
    P
    		Security update for apache2 (Moderate)
    2020-12-02
    oval:org.opensuse.security:def:4934
    P
    		Security update for libvirt (Important)
    2020-12-02
    oval:org.opensuse.security:def:37367
    P
    		yast2-core on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37745
    P
    		busybox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:51322
    P
    		Security update for jasper (Low)
    2020-12-01
    oval:org.opensuse.security:def:10875
    P
    		aaa_base-malloccheck on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10582
    P
    		pam-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10738
    P
    		libgnutls-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52531
    P
    		Security update for munge (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52727
    P
    		Security update for the Linux Kernel (Live Patch 9 for SLE 15) (Important)
    2020-12-01
    oval:org.opensuse.security:def:54196
    P
    		flash-player on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:51111
    P
    		Security update for wireshark (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38055
    P
    		rsync on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38804
    P
    		sudo on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:51323
    P
    		Security update for vim (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52561
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:38214
    P
    		gv on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10506
    P
    		libidn-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37539
    P
    		libjbig2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37947
    P
    		libpulse-mainloop-glib0-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37451
    P
    		grub2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37835
    P
    		krb5-appl-clients on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10805
    P
    		libunrar-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37307
    P
    		ppc64-diag on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10629
    P
    		augeas-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10763
    P
    		libneon-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52612
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:10630
    P
    		Security update for xorg-x11-server (Important)
    2020-12-01
    oval:org.opensuse.security:def:10786
    P
    		librsvg-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52765
    P
    		Security update for the Linux Kernel (Live Patch 15 for SLE 15) (Important)
    2020-12-01
    oval:org.opensuse.security:def:51251
    P
    		Security update for djvulibre (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38094
    P
    		wpa_supplicant on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38846
    P
    		flash-player on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:51345
    P
    		Security update for freetype2 (Important)
    2020-12-01
    oval:org.opensuse.security:def:38852
    P
    		gnome-shell-calendar on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37308
    P
    		ppp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37640
    P
    		perl-Config-IniFiles on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38006
    P
    		mozilla-nspr-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10554
    P
    		libtiff-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37587
    P
    		libspice-server1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37995
    P
    		libz1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10814
    P
    		libxslt-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10853
    P
    		systemtap-sdt-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10514
    P
    		libksba-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52419
    P
    		Security update for libqt5-qtbase (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:53888
    P
    		Security update for LibreOffice (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37355
    P
    		xalan-j2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10811
    P
    		libxcb-composite0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52846
    P
    		Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP1) (Important)
    2020-12-01
    oval:org.opensuse.security:def:51489
    P
    		Security update for python3 (Important)
    2020-12-01
    oval:org.opensuse.security:def:52219
    P
    		Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52168
    P
    		Security update for java-11-openjdk (Important)
    2020-12-01
    oval:org.opensuse.security:def:38142
    P
    		bubblewrap on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38894
    P
    		flash-player on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37319
    P
    		radvd on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37697
    P
    		update-alternatives on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37356
    P
    		xdg-utils on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37688
    P
    		sysvinit-tools on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38054
    P
    		rrdtool on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10827
    P
    		ocaml on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10862
    P
    		xfig on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10536
    P
    		libraptor-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52493
    P
    		Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP2) (Important)
    2020-12-01
    oval:org.opensuse.security:def:53962
    P
    		flash-player on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10562
    P
    		libwmf-0_2-7 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52653
    P
    		Security update for the Linux Kernel (Live Patch 2 for SLE 15) (Important)
    2020-12-01
    oval:org.opensuse.security:def:54122
    P
    		squashfs on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52327
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:38166
    P
    		dbus-1-glib on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:52453
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38170
    P
    		dovecot22 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37403
    P
    		cracklib on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37787
    P
    		ft2demos on GA media (Moderate)
    2020-12-01
    oval:org.mitre.oval:def:6716
    V
    		ATL COM Initialization Vulnerability
    2015-08-10
    BACK
    microsoft visual c++ 2005 sp1
    microsoft visual c++ 2008
    microsoft visual c++ 2008 sp1
    microsoft windows 2000 * sp4
    microsoft windows 2003 server * sp2
    microsoft windows server 2008 * sp2
    microsoft windows server 2008 -
    microsoft windows vista * sp1
    microsoft windows vista * sp2
    microsoft windows vista -
    microsoft windows xp * sp2
    microsoft windows xp * sp3
    microsoft visual studio 2003 sp1
    microsoft visual studio 2005 sp1
    microsoft visual studio 2008
    microsoft visual studio 2008 sp1
    microsoft windows 2000 - sp4
    microsoft windows xp sp2
    microsoft windows xp 2005 sp3
    microsoft windows vista *
    microsoft windows server_2003 sp2
    microsoft windows server_2003 sp2
    microsoft windows server_2003 sp2
    microsoft windows vista -
    microsoft windows xp sp2
    microsoft visual studio 2005 sp1
    microsoft windows vista - sp1
    microsoft windows vista - sp1
    microsoft visual studio .net 2003 sp1
    microsoft windows server 2008 -
    microsoft windows server 2008 -
    microsoft windows xp sp3
    microsoft windows vista - sp2
    microsoft windows vista - sp2
    microsoft windows server 2008 sp2
    microsoft visual studio 2008
    microsoft visual studio 2008 sp1
    microsoft windows server 2008
    microsoft ie 6.0
    microsoft ie 6.0 sp1
    suse suse linux 9.0
    novell linux desktop 9
    novell suse linux enterprise server 10 sp2
    turbolinux turbolinux personal *
    adobe flash player 9.0.28
    adobe flash player 7.0.70.0
    adobe flash player 8.0.34.0
    adobe flash player 8.0.35.0
    adobe flash player 9.0.45.0
    adobe flash player 9.0.47.0
    adobe flash player 9.0.48.0
    adobe flash player 7.0.69.0
    adobe flash player 9.0.115.0
    adobe flash player 8.0
    adobe flash player 9.0.16
    adobe flash player 9.0.20.0
    adobe flash player 9.0.28.0
    adobe flash player 9.0.31.0
    adobe flex 3.0
    adobe flash player 7.0
    adobe flash player 7.0.1
    adobe flash player 7.0.25
    adobe flash player 7.0.63
    adobe flash player 7.1
    adobe flash player 7.1.1
    adobe flash player 7.2
    adobe flash player 8.0.24.0
    adobe flash player 9.0.114.0
    adobe flash player 9.0.20
    microsoft ie 5.0.1 sp4
    novell open enterprise server *
    cisco unity server 4.0
    novell opensuse 10.3
    f5 firepass 6.0
    f5 firepass 5.4
    adobe flash player 9.0.124.0
    adobe flash player 8.0.39.0
    novell opensuse 11.0
    novell suse linux enterprise server 10 sp2
    f5 firepass 5.5
    adobe flash player 9.0.112.0
    adobe flash player 10.0.12.10
    adobe flash player 9.0
    adobe flash player 10.0.0.584
    adobe flash player 10
    adobe flash player 10.0.12.36
    adobe flash player 9.0.151.0
    adobe flash player 10.0.15.3
    adobe air 1.5
    adobe flash player 7.0.63
    adobe flash player 8.0
    adobe flash player 8.0
    adobe air 1.5.1
    adobe flash player 10.0.22.87