CVE-2009-0230

Published: Jun 10, 2009Modified: Apr 23, 2026

9.0

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Exploitability: 8.0 / Impact: 10.0

Source: NVD

Description

The Windows Print Spooler in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows remote authenticated users to gain privileges via a crafted RPC message that triggers loading of a DLL file from an arbitrary directory, aka "Print Spooler Load Library Vulnerability."

Affected (17)

Products: Microsoft: Windows 2000, Windows 2003 Server, Windows Server, Windows Server 2008, Windows Vista, Windows Xp

6 products

Windows 2003 Server

Windows Server 2008

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows 2000	All versions
Microsoft Windows 2003 Server	All versions
Microsoft Windows 2003 Server	All versions
Microsoft Windows 2003 Server	All versions
Microsoft Windows Server	Version 2008
Microsoft Windows Server	Version 2008
Microsoft Windows Server 2008	All versions
Microsoft Windows Server 2008	All versions
Microsoft Windows Server 2008	All versions
Microsoft Windows Server 2008	All versions
Microsoft Windows Vista	All versions
Microsoft Windows Vista	All versions
Microsoft Windows Vista	All versions
Microsoft Windows Vista	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions

Related CWEs

References (18)

http://osvdb.org/54934

Source: secure@microsoft.com

Broken Link

http://secunia.com/advisories/35365

Source: secure@microsoft.com

Third Party Advisory

http://support.avaya.com/elmodocs2/security/ASA-2009-217.htm

Source: secure@microsoft.com

Third Party Advisory

http://www.securityfocus.com/bid/35209

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id?1022352

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

http://www.us-cert.gov/cas/techalerts/TA09-160A.html

Source: secure@microsoft.com

Third Party AdvisoryUS Government Resource

http://www.vupen.com/english/advisories/2009/1541

Source: secure@microsoft.com

Third Party Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-022

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6287

Source: secure@microsoft.com

Third Party Advisory

http://osvdb.org/54934

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://secunia.com/advisories/35365

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://support.avaya.com/elmodocs2/security/ASA-2009-217.htm

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.securityfocus.com/bid/35209

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id?1022352

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.us-cert.gov/cas/techalerts/TA09-160A.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

http://www.vupen.com/english/advisories/2009/1541

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-022

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6287

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.