We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2009-1529



Description

Microsoft Internet Explorer 7 for Windows XP SP2 and SP3; 7 for Server 2003 SP2; 7 for Vista Gold, SP1, and SP2; and 7 for Server 2008 SP2 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by calling the setCapture method on a collection of crafted objects, aka "Uninitialized Memory Corruption Vulnerability."

Reserved 2009-05-05 | Published 2009-06-10 | Updated 2024-10-21 | Assigner microsoft

References

www.vupen.com/english/advisories/2009/1538 (ADV-2009-1538) vdb-entry

www.securityfocus.com/archive/1/504205/100/0/threaded (20090610 ZDI-09-036: Microsoft Internet Explorer setCapture Memory Corruption Vulnerability) mailing-list

docs.microsoft.com/...pdates/securitybulletins/2009/ms09-019 (MS09-019) vendor-advisory

www.zerodayinitiative.com/advisories/ZDI-09-036

www.securityfocus.com/bid/35223 (35223) vdb-entry

oval.cisecurity.org/...finition/oval:org.mitre.oval:def:6295 (oval:org.mitre.oval:def:6295) vdb-entry signature

osvdb.org/54948 (54948) vdb-entry

www.us-cert.gov/cas/techalerts/TA09-160A.html (TA09-160A) third-party-advisory

www.securitytracker.com/id?1022350 (1022350) vdb-entry

cve.org (CVE-2009-1529)

nvd.nist.gov (CVE-2009-1529)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2009-1529

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.

© Copyright 2024 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.