CVE-2009-0555
- EPSS 27.09%
- Veröffentlicht 14.10.2009 10:30:00
- Zuletzt bearbeitet 16.06.2026 23:05:17
Microsoft Windows Media Runtime, as used in DirectShow WMA Voice Codec, Windows Media Audio Voice Decoder, and Audio Compression Manager (ACM), does not properly process Advanced Systems Format (ASF) files, which allows remote attackers to execute ar...
CVE-2009-1547
- EPSS 37.44%
- Veröffentlicht 14.10.2009 10:30:00
- Zuletzt bearbeitet 16.06.2026 23:07:29
Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via a crafted data stream header that triggers memory corruption, aka "Data Stream Header Corruption Vulnerability."
CVE-2009-1132
- EPSS 27.05%
- Veröffentlicht 08.09.2009 22:30:00
- Zuletzt bearbeitet 16.06.2026 23:06:34
Heap-based buffer overflow in the Wireless LAN AutoConfig Service (aka Wlansvc) in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via a malformed wireless frame, aka "Wireless...
CVE-2009-1920
- EPSS 21.51%
- Veröffentlicht 08.09.2009 22:30:00
- Zuletzt bearbeitet 16.06.2026 23:08:21
The JScript scripting engine 5.1, 5.6, 5.7, and 5.8 in JScript.dll in Microsoft Windows, as used in Internet Explorer, does not properly load decoded scripts into memory before execution, which allows remote attackers to execute arbitrary code via a ...
- EPSS 27.4%
- Veröffentlicht 08.09.2009 22:30:00
- Zuletzt bearbeitet 16.06.2026 23:08:22
The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 does not properly manage state information, which allows remote attackers to execute arbitrary code by sending packets to a listening service, and th...
CVE-2009-1926
- EPSS 35.04%
- Veröffentlicht 08.09.2009 22:30:00
- Zuletzt bearbeitet 16.06.2026 23:08:22
Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to cause a denial of service (TCP outage) via a series of TCP sessions that have pending data and a (1) small o...
CVE-2009-2498
- EPSS 21.21%
- Veröffentlicht 08.09.2009 22:30:00
- Zuletzt bearbeitet 16.06.2026 23:09:35
Microsoft Windows Media Format Runtime 9.0, 9.5, and 11 and Windows Media Services 9.1 and 2008 do not properly parse malformed headers in Advanced Systems Format (ASF) files, which allows remote attackers to execute arbitrary code via a crafted (1) ...
CVE-2009-2499
- EPSS 15.55%
- Veröffentlicht 08.09.2009 22:30:00
- Zuletzt bearbeitet 16.06.2026 23:09:35
Microsoft Windows Media Format Runtime 9.0, 9.5, and 11; and Microsoft Media Foundation on Windows Vista Gold, SP1, and SP2 and Server 2008; allows remote attackers to execute arbitrary code via an MP3 file with crafted metadata that triggers memory ...
- EPSS 90.12%
- Veröffentlicht 08.09.2009 22:30:00
- Zuletzt bearbeitet 16.06.2026 23:10:57
Array index error in the SMBv2 protocol implementation in srv2.sys in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC allows remote attackers to execute arbitrary code or cause a denial of service (syste...
- EPSS 4.93%
- Veröffentlicht 12.08.2009 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:08:58
Unspecified vulnerability in Apple Safari 4 before 4.0.3 allows remote web servers to place an arbitrary web site in the Top Sites view, and possibly conduct phishing attacks, via unknown vectors.