| Vulnerability Name: | CVE-2009-3678 (CCN-58622) | ||||||||
| Assigned: | 2009-12-29 | ||||||||
| Published: | 2009-12-29 | ||||||||
| Updated: | 2018-10-30 | ||||||||
| Summary: | Integer overflow in cdd.dll in the Canonical Display Driver (CDD) in Microsoft Windows Server 2008 R2 and Windows 7 on 64-bit platforms, when the Windows Aero theme is installed, allows context-dependent attackers to cause a denial of service (reboot) or possibly execute arbitrary code via a crafted image file that triggers incorrect data parsing after user-mode data is copied to kernel mode, as demonstrated using "Browse with Irfanview" and certain actions on a folder containing a large number of thumbnail images in Resample mode, possibly related to the ATI graphics driver or win32k.sys, aka "Canonical Display Driver Integer Overflow Vulnerability." | ||||||||
| CVSS v3 Severity: | 9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C) 6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
5.6 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-189 | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: CONFIRM Type: UNKNOWN http://blogs.technet.com/msrc/archive/2010/05/18/security-advisory-2028859-released.aspx Source: CONFIRM Type: UNKNOWN http://blogs.technet.com/srd/archive/2010/05/18/cdd-dll-vulnerability-difficult-to-exploit.aspx Source: MITRE Type: CNA CVE-2009-3678 Source: MISC Type: UNKNOWN http://en.irfanview-forum.de/vb/showthread.php?5647-V4-25-bluescreen-with-Windows-7-cdd-dll-win32k-sys Source: MISC Type: UNKNOWN http://isc.sans.org/diary.html?storyid=8809 Source: OSVDB Type: UNKNOWN 64731 Source: CCN Type: PCANDMACTECH Blog, Tuesday, December 29, 2009 Irfanview and BSOD Source: MISC Type: UNKNOWN http://pcandmactech.blogspot.com/2009/12/irfanview-and-bsod.html Source: CCN Type: SA39577 Microsoft Windows Canonical Display Driver Memory Corruption Source: SECUNIA Type: Vendor Advisory 39577 Source: CCN Type: Microsoft Security Advisory (2028859) Vulnerability in Canonical Display Driver Could Allow Remote Code Execution Source: CONFIRM Type: UNKNOWN http://www.microsoft.com/technet/security/advisory/2028859.mspx Source: CCN Type: Microsoft Security Bulletin MS10-043 Vulnerability in Canonical Display Driver Could Allow Remote Code Execution (2032276) Source: CCN Type: Microsoft Web site Windows 7 Source: CCN Type: OSVDB ID: 64731 Microsoft Windows Canonical Display Driver (cdd.dll) Unspecified Memory Corruption Source: BID Type: UNKNOWN 40237 Source: CCN Type: BID-40237 Microsoft Windows Canonical Display Driver Remote Code Execution Vulnerability Source: CERT Type: US Government Resource TA10-194A Source: VUPEN Type: Vendor Advisory ADV-2010-1178 Source: MS Type: UNKNOWN MS10-043 Source: XF Type: UNKNOWN ms-win-cdd-code-execution(58622) Source: XF Type: UNKNOWN ms-win-irfanview-dos(58622) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:7195 | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| Oval Definitions | |||||||||
| |||||||||
| BACK | |||||||||