CVE-2009-2517

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2009-2517 to a friend

New vulnerability?
New tool?
Tell us

Credit:
The information has been provided by Tavis Ormandy, Neel Mehta and Microsoft.
The original article can be found at: http://www.microsoft.com/technet/security/bulletin/ms09-058.mspx

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2009-2517

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* Microsoft Windows 2000
* Windows XP
* Windows Server 2003
* Windows Vista
* Windows Server 2008

Immune Systems:
* Windows 7
* Windows Server 2008 R2

This security update is rated Important for supported editions of Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008; and Moderate for Service Pack 2 for all editions of Windows Vista and Windows Server 2008.

The security update addresses the vulnerabilities by ensuring that the Windows kernel truncates 64-bit values properly, ensuring that the Windows kernel properly validates data within an executable, and ensuring that the Windows kernel cleans up exceptions under error conditions.

Patch Availability:
http://go.microsoft.com/fwlink/?LinkID=40747

CVE Information:
CVE-2009-2515
CVE-2009-2516
CVE-2009-2517

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus