Microsoft Active Template Library Header Data Remote Code Execution Vulnerability

Microsoft Active Template Library Header Data Remote Code Execution Vulnerability

References:

Attacking Interoperability (Mark Dowd, Ryan Smith, and David Dewey)
Microsoft Homepage (Microsoft)
Microsoft Knowledge Base Article 240797 (Microsoft)
MS09-037: Why we are using CVE's already used in MS09-035 (Chengyun Chu)
New vulnerability in MPEG2TuneRequest ActiveX Control Object in msvidctl.dll (Chengyun Chu)
Nortel Response to Microsoft Security Bulletin MS09-032 (Nortel Networks)
Nortel Response to Microsoft Security Bulletin MS09-037 (Nortel Networks)
Questions about Timing and Microsoft Security Advisory 972890 (Mike Reavey)
Technical Cyber Security Alert TA09-187A (US-CERT)
Upgrade your Windows Live Messenger Service (Microsoft)
Microsoft Security Advisory (972890) Vulnerability in Microsoft Video ActiveX Co (Microsoft)
Microsoft Security Advisory (973882): Vulnerabilities in Microsoft Active Templa (Microsoft)
Microsoft Security Bulletin MS09-032 - Critical (Microsoft)
Microsoft Security Bulletin MS09-037 (Microsoft)
Vulnerability Note VU#180513 Microsoft Video ActiveX control stack buffer overfl (US-CERT)

Privacy Statement
Copyright 2010, SecurityFocus