SecurityTracker: Microsoft Web Services on Devices API (WSDAPI) Validation Error Lets Remote Users Execute Arbitrary Code

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: OS (Microsoft) > Windows DLL (Any)

Vendors: Microsoft

Microsoft Web Services on Devices API (WSDAPI) Validation Error Lets Remote Users Execute Arbitrary Code

SecurityTracker Alert ID: 1023153

SecurityTracker URL: http://securitytracker.com/id/1023153

CVE Reference: CVE-2009-2512 (Links to External Site)

Updated: Nov 10 2009

Original Entry Date: Nov 10 2009

Impact: Execution of arbitrary code via network, User access via network

Fix Available: Yes Vendor Confirmed: Yes

Version(s): Vista SP2, 2008 SP2; and prior service packs

Description: A vulnerability was reported in Web Services on Devices API (WSDAPI) on Windows. A remote user can execute arbitrary code on the target system.

A remote user can send a specially crafted Web Services on Devices message to TCP ports 5357 or 5358 to execute arbitrary code on the target system. The code will run with the privileges of the target service.

Both client and server implementations are affected.

Neel Mehta of Google reported this vulnerability.

Impact: A remote user can execute arbitrary code on the target system.

Solution: The vendor has issued the following fixes:

Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=ebf0c294-cd99-445a-a741-78253e47189f

Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=d9645fc9-f524-43f1-8b8c-94b3b4312158

Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=d6a60883-b103-459a-a91b-cd6ed946cefe

Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=3dde1587-42d3-438f-8344-696a5657b9b1

Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=841a027f-22fa-42de-93b3-57a3fe92a1d3

A restart is required.

The Microsoft advisory is available at:

http://www.microsoft.com/technet/security/bulletin/ms09-063.mspx

Vendor URL: www.microsoft.com/technet/security/bulletin/ms09-063.mspx (Links to External Site)

Cause: Input validation error

Underlying OS:

Message History: None.

Source Message Contents

Date: Tue, 10 Nov 2009 19:41:51 +0000
Subject: http://www.microsoft.com/technet/security/bulletin/ms09-063.mspx


Microsoft Security Bulletin MS09-063 - Critical: Vulnerability in Web Services on Devices API Could Allow Remote Code Execution (973565)

CVE-2009-2512

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2012, SecurityGlobal.net LLC