Microsoft Visual Studio Active Template Library NULL String Information Disclosure Vulnerability

Bugtraq ID: 35830
Class: Unknown
CVE: CVE-2009-2495
Remote: Yes
Local: No
Published: Jul 28 2009 12:00AM
Updated: Apr 27 2010 04:22PM
Credit: Ryan Smith of VeriSign iDefense Labs
Vulnerable: Microsoft Windows Live Messenger 2009 0
Microsoft Windows Live Messenger 8.5
Microsoft Windows Live Messenger 8.1
Microsoft Windows Live Messenger 8.0
Microsoft Windows Live Messenger 14.0
Microsoft Windows Live Messenger 0
Microsoft Windows CE 6.0
Microsoft Visual Studio 2008 SP1
Microsoft Visual Studio 2008 0
Microsoft Visual Studio 2005 Team Edition for Testers 0
Microsoft Visual Studio 2005 Team Edition for Developers 0
Microsoft Visual Studio 2005 Team Edition for Architects 0
Microsoft Visual Studio 2005 Team Edition 0
Microsoft Visual Studio 2005 Standard Edition 0
Microsoft Visual Studio 2005 Professional Edition 0
Microsoft Visual Studio 2005 Premier Partner Edition - ENU 8.0.50727 .42
Microsoft Visual Studio 2005 64-bit Hosted Visual C++ Tools SP1
Microsoft Visual Studio 2005 SP1
Microsoft Visual Studio 2005
Microsoft Visual Studio .NET 2003 SP1
Microsoft Visual C++ 2008 SP1
Microsoft Visual C++ 2008 0
Microsoft Visual C++ 2005 SP1
Microsoft Visio Viewer 2007 SP2
Microsoft Visio Viewer 2003 0
Microsoft Visio Viewer 2002 0
Microsoft Outlook 2007 SP2 0
Microsoft Outlook 2007 SP1 0
Microsoft Outlook 2003 SP3
Microsoft Outlook 2002 SP3
+ Microsoft Office XP SP3
 + Microsoft Office XP SP3
 HP HP ProLiant Support Pack 8.30
Not Vulnerable: Microsoft Windows Live Messenger 14.0.8089
HP HP ProLiant Support Pack 8.40


 

Privacy Statement
Copyright 2010, SecurityFocus