CVE-2009-0081: Input Validation
First published: Tue Mar 10 2009(Updated: )
The graphics device interface (GDI) implementation in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate input received from user mode, which allows remote attackers to execute arbitrary code via a crafted (1) Windows Metafile (aka WMF) or (2) Enhanced Metafile (aka EMF) image file, aka "Windows Kernel Input Validation Vulnerability."
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows 2000 | =sp4 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | =sp1 | |
| Microsoft Windows Server | =sp1 | |
| Microsoft Windows Server | =sp2 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | ||
| Microsoft Windows Server | ||
| Microsoft Windows Vista | ||
| Microsoft Windows Vista | =sp1 | |
| Microsoft Windows Vista | =gold | |
| Microsoft Windows XP | ||
| Microsoft Windows XP | =sp2 | |
| Microsoft Windows XP | =sp2 | |
| Microsoft Windows XP | =sp3 | |
| Microsoft Windows Vista | =sp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/advisories/34117
- http://www.securityfocus.com/bid/34012
- http://www.vupen.com/english/advisories/2009/0659
- http://www.securitytracker.com/id?1021826
- http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=842987&poid=
- http://osvdb.org/52522
- http://support.avaya.com/elmodocs2/security/ASA-2009-079.htm
- http://www.us-cert.gov/cas/techalerts/TA09-069A.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6202
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-006
Frequently Asked Questions
What is the severity of CVE-2009-0081?
CVE-2009-0081 is rated as critical due to the potential for remote code execution.
How do I fix CVE-2009-0081?
To fix CVE-2009-0081, apply the latest security updates from Microsoft for the affected Windows versions.
Which operating systems are affected by CVE-2009-0081?
CVE-2009-0081 affects Microsoft Windows 2000, XP, Server 2003, Vista, and Server 2008 in various service packs.
Can CVE-2009-0081 be exploited remotely?
Yes, CVE-2009-0081 can be exploited remotely by attackers due to improper input validation in the graphics device interface.
What are the potential impacts of CVE-2009-0081?
The potential impacts of CVE-2009-0081 include arbitrary code execution and full system compromise if exploited.
- agent/references
- agent/author
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/description
- agent/event
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft windows 2000
- version/microsoft windows 2000/sp4
- canonical/microsoft windows server
- version/microsoft windows server/sp1
- version/microsoft windows server/sp2
- canonical/microsoft windows vista
- version/microsoft windows vista/sp1
- version/microsoft windows vista/gold
- canonical/microsoft windows xp
- version/microsoft windows xp/sp2
- version/microsoft windows xp/sp3