Microsoft Windows Media Format ASF Header Invalid Free Memory Corruption Vulnerability

Bugtraq ID: 36225
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2009-2498
Remote: Yes
Local: No
Published: Sep 08 2009 12:00AM
Updated: Sep 18 2009 07:10PM
Credit: Peter Winter-Smith of NGS Software
Vulnerable: Nortel Networks Self-Service WVADS 0
Nortel Networks Self-Service VoiceXML 0
Nortel Networks Self-Service Speech Server 0
Nortel Networks Self-Service Peri Workstation 0
Nortel Networks Self-Service Peri Application 0
Nortel Networks Self-Service MPS 500 0
Nortel Networks Self-Service MPS 1000 0
Nortel Networks Self-Service MPS 100 0
Nortel Networks Self-Service CCXML 0
Nortel Networks Self-Service - CCSS7 0
Nortel Networks Contact Center NCC 0
Nortel Networks Contact Center Manager Server 0
Nortel Networks Contact Center Express
Nortel Networks Contact Center Administration 0
Nortel Networks Contact Center - TAPI Server 0
Nortel Networks Contact Center - Symposium Agent 0
Nortel Networks CallPilot 703t
Nortel Networks CallPilot 600r
Nortel Networks CallPilot 202i
Nortel Networks CallPilot 201i
Nortel Networks CallPilot 1005r
Nortel Networks CallPilot 1002rp
Microsoft Windows Media Services 9.1
+ Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter Edition Itanium 0
 + Microsoft Windows Server 2003 Datacenter Edition Itanium 0
 + Microsoft Windows Server 2003 Datacenter x64 Edition SP2
 + Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise Edition Itanium 0
 + Microsoft Windows Server 2003 Enterprise Edition Itanium 0
 + Microsoft Windows Server 2003 Enterprise x64 Edition SP2
 + Microsoft Windows Server 2003 Standard Edition SP2
 + Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 x64 SP2
 Microsoft Windows Media Services 2008
+ Microsoft Windows NT Server 4.0 SP6a
 + Microsoft Windows NT Server 4.0 SP6a
 + Microsoft Windows NT Server 4.0 SP6a
 + Microsoft Windows NT Terminal Server 4.0 SP6
 + Microsoft Windows NT Terminal Server 4.0 SP6
 + Microsoft Windows NT Terminal Server 4.0 SP6
 + Microsoft Windows NT Workstation 4.0 SP6a
 + Microsoft Windows NT Workstation 4.0 SP6a
 + Microsoft Windows NT Workstation 4.0 SP6a
 + Microsoft Windows Server 2008 Datacenter Edition SP2
 + Microsoft Windows Server 2008 Enterprise Edition SP2
 + Microsoft Windows Server 2008 for 32-bit Systems SP2
 + Microsoft Windows Server 2008 for x64-based Systems SP2
 + Microsoft Windows Server 2008 Standard Edition SP2
 Microsoft Windows Media Format 9.5 x64
+ Microsoft Windows Server 2003 Datacenter x64 Edition SP2
 + Microsoft Windows Server 2003 Enterprise x64 Edition SP2
 + Microsoft Windows Server 2003 x64 SP2
 + Microsoft Windows XP Professional x64 Edition SP2
 Microsoft Windows Media Format 9.5
+ Microsoft Windows Server 2003 SP2
 + Microsoft Windows Server 2003 Datacenter x64 Edition
+ Microsoft Windows Server 2003 Enterprise x64 Edition
+ Microsoft Windows Server 2003 Standard Edition SP2
 + Microsoft Windows Server 2003 Standard x64 Edition
+ Microsoft Windows Server 2003 Web Edition SP2
 + Microsoft Windows XP Home SP3
 + Microsoft Windows XP Home SP2
 + Microsoft Windows XP Media Center Edition SP3
 + Microsoft Windows XP Media Center Edition SP2
 + Microsoft Windows XP Professional SP3
 + Microsoft Windows XP Professional SP2
 + Microsoft Windows XP Professional x64 Edition SP2
 Microsoft Windows Media Format 9.0
+ Microsoft Windows 2000 Advanced Server SP4
 + Microsoft Windows 2000 Datacenter Server SP4
 + Microsoft Windows 2000 Professional SP4
 + Microsoft Windows 2000 Server SP4
 + Microsoft Windows 2000 Terminal Services SP4
 + Microsoft Windows XP Home SP3
 + Microsoft Windows XP Home SP2
 + Microsoft Windows XP Media Center Edition SP3
 + Microsoft Windows XP Media Center Edition SP2
 Microsoft Windows Media Format 11
+ Microsoft Windows Server 2008 Datacenter Edition SP2
 + Microsoft Windows Server 2008 Datacenter Edition 0
 + Microsoft Windows Server 2008 Enterprise Edition SP2
 + Microsoft Windows Server 2008 Enterprise Edition 0
 + Microsoft Windows Server 2008 for 32-bit Systems SP2
 + Microsoft Windows Server 2008 for 32-bit Systems 0
 + Microsoft Windows Server 2008 for x64-based Systems SP2
 + Microsoft Windows Server 2008 for x64-based Systems 0
 + Microsoft Windows Server 2008 Standard Edition SP2
 + Microsoft Windows Server 2008 Standard Edition 0
 + Microsoft Windows Vista Ultimate SP2
 + Microsoft Windows Vista Ultimate SP1
 + Microsoft Windows Vista Ultimate
 + Microsoft Windows Vista SP2
 + Microsoft Windows Vista SP1
 + Microsoft Windows Vista Home Premium SP2
 + Microsoft Windows Vista Home Premium SP1
 + Microsoft Windows Vista Home Premium
 + Microsoft Windows Vista Home Basic SP2
 + Microsoft Windows Vista Home Basic SP1
 + Microsoft Windows Vista Home Basic
 + Microsoft Windows Vista Enterprise SP2
 + Microsoft Windows Vista Enterprise SP1
 + Microsoft Windows Vista Enterprise
 + Microsoft Windows Vista Business SP2
 + Microsoft Windows Vista Business SP1
 + Microsoft Windows Vista 0
 + Microsoft Windows Vista Business 64-bit edition SP2
 + Microsoft Windows Vista Business 64-bit edition SP1
 + Microsoft Windows Vista Business 64-bit edition 0
 + Microsoft Windows Vista Enterprise 64-bit edition SP2
 + Microsoft Windows Vista Enterprise 64-bit edition SP1
 + Microsoft Windows Vista Enterprise 64-bit edition 0
 + Microsoft Windows Vista Home Basic 64-bit edition SP2
 + Microsoft Windows Vista Home Basic 64-bit edition SP1
 + Microsoft Windows Vista Home Basic 64-bit edition 0
 + Microsoft Windows Vista Home Premium 64-bit edition SP2
 + Microsoft Windows Vista Home Premium 64-bit edition SP1
 + Microsoft Windows Vista Home Premium 64-bit edition 0
 + Microsoft Windows Vista Ultimate 64-bit edition SP2
 + Microsoft Windows Vista Ultimate 64-bit edition SP1
 + Microsoft Windows Vista Ultimate 64-bit edition 0
 + Microsoft Windows Vista x64 Edition SP2
 + Microsoft Windows Vista x64 Edition SP1
 + Microsoft Windows Vista x64 Edition 0
 + Microsoft Windows XP Home SP3
 + Microsoft Windows XP Home SP2
 + Microsoft Windows XP Media Center Edition SP3
 + Microsoft Windows XP Media Center Edition SP2
 + Microsoft Windows XP Professional SP3
 + Microsoft Windows XP Professional SP2
 + Microsoft Windows XP Professional x64 Edition SP2
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus