Release DateAug 11, 2009 |
Severitycritical |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attack attempt against a remote code execution vulnerability in the Microsoft Windows system library "avifil32.dll".The vulnerability is caused by an error when the "AVIFile" API handles a specially crafted AVI file with a chunk with an invalid length specified in the header. It allows a remote attacker to execute arbitrary code. |
Affected ProductsMicrosoft Windows 2000 Service Pack 4Microsoft Windows XP Service Pack 2 Microsoft Windows XP Service Pack 3 Microsoft Windows XP Professional x64 Edition Service Pack 2 Microsoft Windows Server 2003 Service Pack 2 Microsoft Windows Server 2003 x64 Edition Service Pack 2 Microsoft Windows Server 2003 with SP2 for Itanium-based Systems Microsoft Windows Vista Microsoft Windows Vista Service Pack 1 Microsoft Windows Vista Service Pack 2 Microsoft Windows Vista x64 Edition Microsoft Windows Vista x64 Edition Service Pack 1 Microsoft Windows Vista x64 Edition Service Pack 2 Microsoft Windows Server 2008 for 32-bit Systems Microsoft Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft Windows Server 2008 for x64-based Systems Microsoft Windows Server 2008 for x64-based Systems Service Pack 2 Microsoft Windows Server 2008 for Itanium-based Systems Microsoft Windows Server 2008 for Itanium-based Systems Service Pack 2 |
Recommended ActionsApply patch, available from the web site:http://www.microsoft.com/technet/security/Bulletin/MS09-038.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2009-1546 |
Reference/shttp://www.microsoft.com/technet/security/Bulletin/MS09-038.mspx (MS-ID)http://www.securityfocus.com/bid/35970 (BugTraq) http://www.frsirt.com/english/advisories/2009/2233 (FrSIRT) |
