Description
The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1 does not properly enforce string termination, which allows remote attackers to obtain sensitive information via a crafted HTML document with an ATL (1) component or (2) control that triggers a buffer over-read, related to ATL headers and buffer allocation, aka "ATL Null String Vulnerability."
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Affected products
- Microsoft / visual_c++2005 – 2005
- Microsoft / visual_c++2008 – 2008
- Microsoft / visual_c++2008 – 2008
- Microsoft / visual_studio2005 – 2005
- Microsoft / visual_studio2005 – 2005
- Microsoft / visual_studio2008 – 2008
- Microsoft / visual_studio2008 – 2008
- Microsoft / visual_studio_.net2003 – 2003
References
- MISChttp://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/2034
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7573
- VENDOR_ADVISORYhttp://www.adobe.com/support/security/bulletins/apsb09-13.html
- MISChttp://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6478
- MISChttp://www.us-cert.gov/cas/techalerts/TA09-286A.html
- MISChttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-035
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6305
- MAILING_LISThttp://marc.info/?l=bugtraq&m=126592505426855&w=2
- MAILING_LISThttp://marc.info/?l=bugtraq&m=126592505426855&w=2
- VENDOR_ADVISORYhttp://www.adobe.com/support/security/bulletins/apsb09-10.html
- VENDOR_ADVISORYhttp://secunia.com/advisories/36374
- VENDOR_ADVISORYhttp://secunia.com/advisories/36746
- VENDOR_ADVISORYhttp://secunia.com/advisories/35967
- MISChttp://www.us-cert.gov/cas/techalerts/TA09-195A.html
- MISChttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-060