New Search

Web Services on Devices API Memory Corruption Vulnerability

oval:org.mitre.oval:def:6079

The Web Services on Devices API (WSDAPI) in Windows Vista Gold SP1 and SP2 and Server 2008 Gold and SP2 does not properly process the headers of WSD messages which allows remote attackers to execute arbitrary code via a crafted (1) message or (2) response aka "Web Services on Devices API Memory Corruption Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Vista
  • Microsoft Windows Server 2008
Class:
vulnerability
Reference(s):
  • CVE-2009-2512
Product(s):
  • SMBv2