CVE-2009-1546
published 2009-08-12CVE-2009-1546: Integer overflow in Avifil32.dll in the Windows Media file handling functionality in Microsoft Windows allows remote attackers to execute arbitrary code on a…
PriorityP351high8.5CVSS 2.0
AVNACMAuSCCICAC
EPSS
22.46%
97.4th percentile
Integer overflow in Avifil32.dll in the Windows Media file handling functionality in Microsoft Windows allows remote attackers to execute arbitrary code on a Windows 2000 SP4 system via a crafted AVI file, or cause a denial of service on a Windows XP SP2 or SP3, Server 2003 SP2, Vista Gold, SP1, or SP2, or Server 2008 Gold or SP2 system via a crafted AVI file, aka "AVI Integer Overflow Vulnerability."
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_2003_server | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://osvdb.org/56909http://secunia.com/advisories/36206http://www.securityfocus.com/bid/35970http://www.securitytracker.com/id?1022711http://www.us-cert.gov/cas/techalerts/TA09-223A.htmlhttp://www.vupen.com/english/advisories/2009/2233https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-038https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5930http://osvdb.org/56909http://secunia.com/advisories/36206http://www.securityfocus.com/bid/35970http://www.securitytracker.com/id?1022711http://www.us-cert.gov/cas/techalerts/TA09-223A.htmlhttp://www.vupen.com/english/advisories/2009/2233https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-038https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5930
2009-08-12
Published