Vulnerability Name:

CVE-2009-2495 (CCN-52048)

Assigned:2009-07-28
Published:2009-07-28
Updated:2018-10-12
Summary:The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1 does not properly enforce string termination, which allows remote attackers to obtain sensitive information via a crafted HTML document with an ATL (1) component or (2) control that triggers a buffer over-read, related to ATL headers and buffer allocation, aka "ATL Null String Vulnerability."
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N)
5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-200
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2009-2495

Source: CCN
Type: HP Security Bulletin HPSBMA02488 SSRT100013 rev.1
HP ProLiant Support Pack 8.30 for Windows, Remote Code Execution, Information Disclosure

Source: HP
Type: UNKNOWN
SSRT100013

Source: CCN
Type: SA35967
Microsoft Visual Studio Active Template Library Three Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
35967

Source: CCN
Type: SA36374
Adobe Flex Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
36374

Source: CCN
Type: SA36746
Novell GroupWise WebAccess "User.Theme.index" Cross-Site Scripting

Source: SECUNIA
Type: UNKNOWN
36746

Source: CCN
Type: SA37005
Microsoft Office ActiveX Controls Multiple Vulnerabilities

Source: CCN
Type: SA38533
HP ProLiant Support Pack Visual C++ Redistributable Vulnerabilities

Source: CCN
Type: SA39004
F5 FirePass Active Template Library Vulnerabilities

Source: SUNALERT
Type: UNKNOWN
266108

Source: CCN
Type: Microsoft Security Bulletin MS13-068
Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (2756473)

Source: CCN
Type: Microsoft Security Bulletin MS14-082
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3017349)

Source: CCN
Type: Adobe Product Security Advisory APSA09-04
Security advisory for Adobe Flash Player

Source: CCN
Type: Adobe Product Security Bulletin APSB09-10
Security updates available for Adobe Flash Player, Adobe Reader and Acrobat

Source: CONFIRM
Type: UNKNOWN
http://www.adobe.com/support/security/bulletins/apsb09-10.html

Source: CCN
Type: Adobe Product Security Bulletin APSB09-11
Security update available for Shockwave Player

Source: CONFIRM
Type: UNKNOWN
http://www.adobe.com/support/security/bulletins/apsb09-13.html

Source: CCN
Type: cisco-sa-20090728-activex
Active Template Library (ATL) Vulnerability

Source: CCN
Type: IBM Internet Security Systems Protection Advisory
Multiple Vulnerabilities in the Microsoft Visual Studio Active Template Library Could Allow Remote Code Execution

Source: CCN
Type: Microsoft Security Bulletin MS09-035
Vulnerabilities in Visual Studio Active Template Library Could Allow Remote Code Execution (969706)

Source: CCN
Type: Microsoft Security Bulletin MS09-060
Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)

Source: CCN
Type: Microsoft Security Bulletin MS10-045
Vulnerability in Microsoft Office Outlook Could Allow Remote Code Execution (978212)

Source: CCN
Type: Microsoft Security Bulletin MS10-064
Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (2315011)

Source: CONFIRM
Type: UNKNOWN
http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1

Source: CCN
Type: BID-35830
Microsoft Visual Studio Active Template Library NULL String Information Disclosure Vulnerability

Source: CCN
Type: BID-35846
Adobe Flash Player Active Template Library Remote Code Execution Vulnerability

Source: CCN
Type: BID-35847
Cisco Unity ActiveX Header Active Template Library Remote Code Execution Vulnerability

Source: CCN
Type: TLSA-2009-24
Multiple vulnerabilities exist in flash-player

Source: CERT
Type: US Government Resource
TA09-195A

Source: CERT
Type: US Government Resource
TA09-286A

Source: VUPEN
Type: UNKNOWN
ADV-2009-2034

Source: MS
Type: UNKNOWN
MS09-035

Source: MS
Type: UNKNOWN
MS09-060

Source: XF
Type: UNKNOWN
ms-atl-string-disclosure(52048)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6305

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6478

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:7573

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:visual_c++:2005:sp1_redistribution_pkg:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_c++:2008:redistribution_pkg:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_c++:2008:sp1_redistribution_pkg:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2005:sp1:64_bit_hosted_visual_c++_tools:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio_.net:2003:sp1:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.28:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.70.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.34.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.35.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.69.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.20.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.28.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flex:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.25:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.63:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.24.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.114.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.20:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio_.net:2003:sp1:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0.39.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.112.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.12.10:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.0.584:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:air:1.5:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:7.0.63::linux:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0::basic:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:8.0::pro:*:*:*:*:*
  • OR cpe:/a:adobe:air:1.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.22.87:*:*:*:*:*:*:*
  • AND
  • cpe:/o:turbolinux:turbolinux:*:*:personal:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.45.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.47.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.48.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.115.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.31.0:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:unity_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/h:f5:firepass:6.0:*:*:*:*:*:*:*
  • OR cpe:/h:f5:firepass:5.4:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.124.0:*:*:*:*:*:*:*
  • OR cpe:/h:f5:firepass:5.5:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.12.36:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0.151.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:10.0.15.3:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:7573
    V
    		ATL Null String Vulnerability
    2015-08-10
    BACK
    microsoft visual c++ 2005 sp1_redistribution_pkg
    microsoft visual c++ 2008 redistribution_pkg
    microsoft visual c++ 2008 sp1_redistribution_pkg
    microsoft visual studio 2005 sp1
    microsoft visual studio 2005 sp1
    microsoft visual studio 2008
    microsoft visual studio 2008 sp1
    microsoft visual studio .net 2003 sp1
    microsoft visual studio 2005 sp1
    adobe flash player 9.0.28
    adobe flash player 7.0.70.0
    adobe flash player 8.0.34.0
    adobe flash player 8.0.35.0
    adobe flash player 7.0.69.0
    adobe flash player 8.0
    adobe flash player 9.0.16
    adobe flash player 9.0.20.0
    adobe flash player 9.0.28.0
    adobe flex 3.0
    adobe flash player 7.0
    adobe flash player 7.0.1
    adobe flash player 7.0.25
    adobe flash player 7.0.63
    adobe flash player 7.1
    adobe flash player 7.1.1
    adobe flash player 7.2
    adobe flash player 8.0.24.0
    adobe flash player 9.0.114.0
    adobe flash player 9.0.20
    microsoft visual studio .net 2003 sp1
    adobe flash player 8.0.39.0
    adobe flash player 9.0.112.0
    adobe flash player 10.0.12.10
    adobe flash player 10.0.0.584
    adobe air 1.5
    microsoft visual studio 2008
    microsoft visual studio 2008 sp1
    adobe flash player 7.0.63
    adobe flash player 8.0
    adobe flash player 8.0
    adobe air 1.5.1
    adobe flash player 10.0.22.87
    turbolinux turbolinux personal *
    adobe flash player 9.0.45.0
    adobe flash player 9.0.47.0
    adobe flash player 9.0.48.0
    adobe flash player 9.0.115.0
    adobe flash player 9.0.31.0
    cisco unity server 4.0
    f5 firepass 6.0
    f5 firepass 5.4
    adobe flash player 9.0.124.0
    f5 firepass 5.5
    adobe flash player 9.0
    adobe flash player 10
    adobe flash player 10.0.12.36
    adobe flash player 9.0.151.0
    adobe flash player 10.0.15.3