CVE-2009-1925 in Windowsinformazioni

Riassunto

di MITRE

The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 does not properly manage state information, which allows remote attackers to execute arbitrary code by sending packets to a listening service, and thereby triggering misinterpretation of an unspecified field as a function pointer, aka "TCP/IP Timestamps Code Execution Vulnerability."

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

04/06/2009

Divulgazione

08/09/2009

Moderazione

accettato

Voce

VDB-49866

CPE

pronto

CWE

CWE-94 (confermato)

CVSS

10.0 (VulDB)

EPSS

0.27402

KEV

Attività

molto basso

Settore

Finance, Police, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2009-1925
NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-1925
CVE Details	https://www.cvedetails.com/cve/CVE-2009-1925/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you know our Splunk app?

Download it now for free!