Vulnerabilities > CVE-2009-0076 - Resource Management Errors vulnerability in Microsoft Internet Explorer 7
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Microsoft Internet Explorer 7, when XHTML strict mode is used, allows remote attackers to execute arbitrary code via the zoom style directive in conjunction with unspecified other directives in a malformed Cascading Style Sheets (CSS) stylesheet in a crafted HTML document, aka "CSS Memory Corruption Vulnerability."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 | |
OS | 13 |
Common Weakness Enumeration (CWE)
Exploit-Db
description MS Internet Explorer 7 Memory Corruption PoC (MS09-002) (win2k3sp2). CVE-2009-0075,CVE-2009-0076. Remote exploit for windows platform file exploits/windows/remote/8082.html id EDB-ID:8082 last seen 2016-02-01 modified 2009-02-20 platform windows port published 2009-02-20 reporter webDEViL source https://www.exploit-db.com/download/8082/ title Microsoft Internet Explorer 7 - Memory Corruption PoC MS09-002 win2k3sp2 type remote description MS Internet Explorer 7 Memory Corruption Exploit (MS09-002) (xp sp2). CVE-2009-0075,CVE-2009-0076. Remote exploit for windows platform file exploits/windows/remote/8079.html id EDB-ID:8079 last seen 2016-02-01 modified 2009-02-20 platform windows port published 2009-02-20 reporter Abysssec source https://www.exploit-db.com/download/8079/ title Microsoft Internet Explorer 7 - Memory Corruption Exploit MS09-002 XP SP2 type remote description MS Internet Explorer 7 Memory Corruption Exploit (MS09-002) (fast). CVE-2009-0075,CVE-2009-0076. Remote exploit for windows platform id EDB-ID:8152 last seen 2016-02-01 modified 2009-03-04 published 2009-03-04 reporter Ahmed Obied source https://www.exploit-db.com/download/8152/ title Microsoft Internet Explorer 7 - Memory Corruption Exploit MS09-002 description MS Internet Explorer 7 Memory Corruption Exploit (MS09-002) (py). CVE-2009-0075,CVE-2009-0076. Remote exploit for windows platform file exploits/windows/remote/8080.py id EDB-ID:8080 last seen 2016-02-01 modified 2009-02-20 platform windows port published 2009-02-20 reporter David Kennedy (ReL1K) source https://www.exploit-db.com/download/8080/ title Microsoft Internet Explorer 7 - Memory Corruption Exploit MS09-002 py type remote
Msbulletin
bulletin_id | MS09-002 |
bulletin_url | |
date | 2009-02-10T00:00:00 |
impact | Remote Code Execution |
knowledgebase_id | 961260 |
knowledgebase_url | |
severity | Critical |
title | Cumulative Security Update for Internet Explorer (961260) |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS09-002.NASL |
description | The remote host is missing IE Security Update 961260. The remote version of IE is affected by two memory corruption vulnerabilities that may allow an attacker to execute arbitrary code on the remote host. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 35630 |
published | 2009-02-11 |
reporter | This script is Copyright (C) 2009-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/35630 |
title | MS09-002: Cumulative Security Update for Internet Explorer (961260) |
code |
|
Oval
accepted | 2014-08-18T04:06:08.978-04:00 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
class | vulnerability | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
contributors |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
definition_extensions |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
description | Microsoft Internet Explorer 7, when XHTML strict mode is used, allows remote attackers to execute arbitrary code via the zoom style directive in conjunction with unspecified other directives in a malformed Cascading Style Sheets (CSS) stylesheet in a crafted HTML document, aka "CSS Memory Corruption Vulnerability." | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
family | windows | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
id | oval:org.mitre.oval:def:6081 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
status | accepted | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
submitted | 2009-02-10T16:00:00 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
title | CSS Memory Corruption Vulnerability | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
version | 72 |
Seebug
bulletinFamily | exploit |
description | BUGTRAQ ID: 33628 CVE(CAN) ID: CVE-2009-0076 Internet Explorer是微软Windows操作系统中默认捆绑的WEB浏览器。 Internet Explorer处理XHTML strict模式的CSS样式表时存在内存破坏漏洞。如果用户打开的CSS样式表包含有特定的样式指令组合,且其中一个为zoom,就可以触发这个漏洞,导致以当前登录用户的权限执行任意代码。 Microsoft Internet Explorer 7.0 厂商补丁: Microsoft --------- Microsoft已经为此发布了一个安全公告(MS09-002)以及相应补丁: MS09-002:Cumulative Security Update for Internet Explorer (961260) 链接:<a href=http://www.microsoft.com/technet/security/Bulletin/MS09-002.mspx?pf=true target=_blank rel=external nofollow>http://www.microsoft.com/technet/security/Bulletin/MS09-002.mspx?pf=true</a> |
id | SSV:4747 |
last seen | 2017-11-19 |
modified | 2009-02-13 |
published | 2009-02-13 |
reporter | Root |
title | Microsoft IE畸形CSS处理内存破坏漏洞(MS09-002) |
References
- http://www.zerodayinitiative.com/advisories/ZDI-09-012/
- http://www.us-cert.gov/cas/techalerts/TA09-041A.html
- http://www.vupen.com/english/advisories/2009/0389
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6081
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-002