Internet Explorer X.509 Certificate Common Name Encoding Multiple Security Bypass Vulnerabilities
|
Bugtraq ID:
|
36577
|
|
Class:
|
Boundary Condition Error
|
|
CVE:
|
CVE-2009-2511
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Aug 05 2009 12:00AM
|
|
Updated:
|
Nov 02 2009 07:47PM
|
|
Credit:
|
Dan Kaminsky, Len Sassaman, and Meredith Patterson
|
|
Vulnerable:
|
Microsoft Internet Explorer 8
Microsoft Internet Explorer 7.0
+
Microsoft Windows Server 2003 SP2
+
Microsoft Windows Server 2003 Itanium SP2
+
Microsoft Windows Server 2003 x64 SP2
+
Microsoft Windows Server 2008 for 32-bit Systems SP2
+
Microsoft Windows Server 2008 for 32-bit Systems 0
+
Microsoft Windows Server 2008 for Itanium-based Systems SP2
+
Microsoft Windows Server 2008 for Itanium-based Systems 0
+
Microsoft Windows Server 2008 for x64-based Systems SP2
+
Microsoft Windows Server 2008 for x64-based Systems 0
+
Microsoft Windows Vista Ultimate
+
Microsoft Windows Vista Ultimate
+
Microsoft Windows Vista Ultimate
+
Microsoft Windows Vista Ultimate
+
Microsoft Windows Vista SP2
+
Microsoft Windows Vista SP1
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista 0
+
Microsoft Windows Vista 0
+
Microsoft Windows Vista 0
+
Microsoft Windows Vista 0
+
Microsoft Windows Vista 0
+
Microsoft Windows Vista 0
+
Microsoft Windows Vista x64 Edition SP2
+
Microsoft Windows Vista x64 Edition SP1
+
Microsoft Windows Vista x64 Edition 0
+
Microsoft Windows XP Embedded SP3
+
Microsoft Windows XP Home SP3
+
Microsoft Windows XP Media Center Edition SP3
+
Microsoft Windows XP Professional SP3
+
Microsoft Windows XP Professional x64 Edition SP2
+
Microsoft Windows XP Tablet PC Edition SP3
Microsoft Internet Explorer 6.0 SP1
Microsoft Internet Explorer 6.0
-
Microsoft Windows 2000 Advanced Server SP2
-
Microsoft Windows 2000 Advanced Server SP2
-
Microsoft Windows 2000 Advanced Server SP2
-
Microsoft Windows 2000 Advanced Server SP1
-
Microsoft Windows 2000 Advanced Server SP1
-
Microsoft Windows 2000 Advanced Server SP1
-
Microsoft Windows 2000 Advanced Server
-
Microsoft Windows 2000 Advanced Server
-
Microsoft Windows 2000 Advanced Server
-
Microsoft Windows 2000 Datacenter Server SP2
-
Microsoft Windows 2000 Datacenter Server SP2
-
Microsoft Windows 2000 Datacenter Server SP2
-
Microsoft Windows 2000 Datacenter Server SP1
-
Microsoft Windows 2000 Datacenter Server SP1
-
Microsoft Windows 2000 Datacenter Server SP1
-
Microsoft Windows 2000 Datacenter Server
-
Microsoft Windows 2000 Datacenter Server
-
Microsoft Windows 2000 Datacenter Server
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional
-
Microsoft Windows 2000 Professional
-
Microsoft Windows 2000 Professional
-
Microsoft Windows 2000 Server SP2
-
Microsoft Windows 2000 Server SP2
-
Microsoft Windows 2000 Server SP2
-
Microsoft Windows 2000 Server SP1
-
Microsoft Windows 2000 Server SP1
-
Microsoft Windows 2000 Server SP1
-
Microsoft Windows 2000 Server
-
Microsoft Windows 2000 Server
-
Microsoft Windows 2000 Server
-
Microsoft Windows 2000 Terminal Services SP2
-
Microsoft Windows 2000 Terminal Services SP2
-
Microsoft Windows 2000 Terminal Services SP2
-
Microsoft Windows 2000 Terminal Services SP1
-
Microsoft Windows 2000 Terminal Services SP1
-
Microsoft Windows 2000 Terminal Services SP1
-
Microsoft Windows 2000 Terminal Services
-
Microsoft Windows 2000 Terminal Services
-
Microsoft Windows 2000 Terminal Services
-
Microsoft Windows 98
-
Microsoft Windows 98
-
Microsoft Windows 98
-
Microsoft Windows 98SE
-
Microsoft Windows 98SE
-
Microsoft Windows 98SE
-
Microsoft Windows ME
-
Microsoft Windows ME
-
Microsoft Windows ME
-
Microsoft Windows NT 4.0 SP6a
-
Microsoft Windows NT 4.0 SP6a
-
Microsoft Windows NT Enterprise Server 4.0 SP6a
-
Microsoft Windows NT Enterprise Server 4.0 SP6a
-
Microsoft Windows NT Enterprise Server 4.0 SP6a
-
Microsoft Windows NT Server 4.0 SP6a
-
Microsoft Windows NT Server 4.0 SP6a
-
Microsoft Windows NT Server 4.0 SP6a
-
Microsoft Windows NT Terminal Server 4.0 SP6a
-
Microsoft Windows NT Terminal Server 4.0 SP6a
-
Microsoft Windows NT Workstation 4.0 SP6a
-
Microsoft Windows NT Workstation 4.0 SP6a
-
Microsoft Windows NT Workstation 4.0 SP6a
+
Microsoft Windows Server 2003 Datacenter Edition
+
Microsoft Windows Server 2003 Datacenter Edition
+
Microsoft Windows Server 2003 Datacenter Edition
+
Microsoft Windows Server 2003 Datacenter Edition Itanium 0
+
Microsoft Windows Server 2003 Datacenter Edition Itanium 0
+
Microsoft Windows Server 2003 Enterprise Edition
+
Microsoft Windows Server 2003 Enterprise Edition
+
Microsoft Windows Server 2003 Enterprise Edition
+
Microsoft Windows Server 2003 Enterprise Edition Itanium 0
+
Microsoft Windows Server 2003 Enterprise Edition Itanium 0
+
Microsoft Windows Server 2003 Enterprise Edition Itanium 0
+
Microsoft Windows Server 2003 Standard Edition
+
Microsoft Windows Server 2003 Standard Edition
+
Microsoft Windows Server 2003 Standard Edition
+
Microsoft Windows Server 2003 Web Edition
+
Microsoft Windows Server 2003 Web Edition
+
Microsoft Windows Server 2003 Web Edition
+
Microsoft Windows XP Home
+
Microsoft Windows XP Home
+
Microsoft Windows XP Home
+
Microsoft Windows XP Professional
+
Microsoft Windows XP Professional
+
Microsoft Windows XP Professional
|
|
|
|
Not Vulnerable:
|
|
|
