What is the severity of CVE-2009-2529?

CVE-2009-2529 is rated as critical due to its potential for remote code execution.

How do I fix CVE-2009-2529?

To fix CVE-2009-2529, users should update their Microsoft Internet Explorer to a patched version provided by Microsoft.

What versions of Internet Explorer are affected by CVE-2009-2529?

CVE-2009-2529 affects Microsoft Internet Explorer versions 5.01 SP4, 6, 7, and 8.

Can CVE-2009-2529 be exploited through email attachments?

Yes, CVE-2009-2529 can be exploited through crafted HTML documents delivered via email or other means.

What operating systems are vulnerable to CVE-2009-2529?

CVE-2009-2529 affects several Windows operating systems, including Windows 2000, Windows XP, Windows Vista, and Windows Server editions.

Vulnerability/
CVE-2009-2529

critical

9.3

CWE

14/10/2009

21/10/2024

CVE-2009-2529: Code Injection

First published: Wed Oct 14 2009(Updated: )

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not properly handle argument validation for unspecified variables, which allows remote attackers to execute arbitrary code via a crafted HTML document, aka "HTML Component Handling Vulnerability."

Credit: secure@microsoft.com secure@microsoft.com

Affected Software	Affected Version	How to fix
All of
Any of
Internet Explorer	=5.01-sp4
Internet Explorer	=6-sp1
Microsoft Windows 2000	=sp4
All of
Internet Explorer	=6
Any of
Microsoft Windows Server 2003	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp2
All of
Internet Explorer	=7
Any of
Microsoft Windows Server 2003	=sp2
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Vista
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows Vista
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp2
All of
Internet Explorer	=8
Any of
Microsoft Windows 7
Microsoft Windows Server 2003	=sp2
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Vista
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows Vista
Microsoft Windows Vista	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
Internet Explorer	=5.01-sp4
Internet Explorer	=6-sp1
Microsoft Windows 2000	=sp4
Internet Explorer	=6
Microsoft Windows Server 2003	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp2
Internet Explorer	=7
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Vista
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows Vista
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Internet Explorer	=8
Microsoft Windows 7
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Vista	=sp1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-2529?
CVE-2009-2529 is rated as critical due to its potential for remote code execution.
How do I fix CVE-2009-2529?
To fix CVE-2009-2529, users should update their Microsoft Internet Explorer to a patched version provided by Microsoft.
What versions of Internet Explorer are affected by CVE-2009-2529?
CVE-2009-2529 affects Microsoft Internet Explorer versions 5.01 SP4, 6, 7, and 8.
Can CVE-2009-2529 be exploited through email attachments?
Yes, CVE-2009-2529 can be exploited through crafted HTML documents delivered via email or other means.
What operating systems are vulnerable to CVE-2009-2529?
CVE-2009-2529 affects several Windows operating systems, including Windows 2000, Windows XP, Windows Vista, and Windows Server editions.

collector/nvd-historical
agent/type
agent/author
agent/weakness
agent/references
agent/description
agent/first-publish-date
agent/event
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/source
agent/tags
agent/softwarecombine
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-index
vendor/microsoft
canonical/internet explorer
version/internet explorer/5.01-sp4
version/internet explorer/6-sp1
canonical/microsoft windows 2000
version/microsoft windows 2000/sp4
version/internet explorer/6
canonical/microsoft windows server 2003
version/microsoft windows server 2003/sp2
canonical/microsoft windows xp
version/microsoft windows xp/sp3
version/microsoft windows xp/sp2
version/internet explorer/7
canonical/microsoft windows server 2008 itanium
version/microsoft windows server 2008 itanium/sp2
canonical/microsoft windows vista
version/microsoft windows vista/sp1
version/microsoft windows vista/sp2
version/internet explorer/8
canonical/microsoft windows 7
version/microsoft windows server 2008 itanium/r2

CVE-2009-2529: Code Injection

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-2529?

How do I fix CVE-2009-2529?

What versions of Internet Explorer are affected by CVE-2009-2529?

Can CVE-2009-2529 be exploited through email attachments?

What operating systems are vulnerable to CVE-2009-2529?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2009-2529?

How do I fix CVE-2009-2529?

What versions of Internet Explorer are affected by CVE-2009-2529?

Can CVE-2009-2529 be exploited through email attachments?

What operating systems are vulnerable to CVE-2009-2529?