CVE-2009-2495
6.5 MEDIUMThe Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ ...
Published: 2009-07-29 · Last updated: 2026-05-27
Severity and scoring
- CVSS
- 6.5 MEDIUM
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
- CWE
- CWE-126, CWE-200
Affected products
| Vendor | Product |
|---|---|
| microsoft | visual_c\+\+, visual_studio, visual_studio_.net |
Description
The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1 does not properly enforce string termination, which allows remote attackers to obtain sensitive information via a crafted HTML document with an ATL (1) component or (2) control that triggers a buffer over-read, related to ATL headers and buffer allocation, aka "ATL Null String Vulnerability."
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2009-2495
- [Other]http://marc.info/?l=bugtraq&m=126592505426855&w=2
- [Other]http://secunia.com/advisories/35967
- [Other]http://secunia.com/advisories/36374
- [Other]http://secunia.com/advisories/36746
- [Other]http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1
- [Other]http://www.adobe.com/support/security/bulletins/apsb09-10.html
- [Other]http://www.adobe.com/support/security/bulletins/apsb09-13.html
- [Other]http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1
- [Other]http://www.us-cert.gov/cas/techalerts/TA09-195A.html
- [Other]http://www.us-cert.gov/cas/techalerts/TA09-286A.html
- [Other]http://www.vupen.com/english/advisories/2009/2034
- [Other]https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-035
- [Other]https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-060
- [Other]https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6305
- [Other]https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6478
- [Other]https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7573
- [Other]http://marc.info/?l=bugtraq&m=126592505426855&w=2
- [Other]http://secunia.com/advisories/35967
- [Other]http://secunia.com/advisories/36374
- [Other]http://secunia.com/advisories/36746
- [Other]http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1
- [Other]http://www.adobe.com/support/security/bulletins/apsb09-10.html
- [Other]http://www.adobe.com/support/security/bulletins/apsb09-13.html
- [Other]http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1
- [Other]http://www.us-cert.gov/cas/techalerts/TA09-195A.html
- [Other]http://www.us-cert.gov/cas/techalerts/TA09-286A.html
- [Other]http://www.vupen.com/english/advisories/2009/2034
- [Other]https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-035
- [Other]https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-060
- [Other]https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6305
- [Other]https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6478
- [Other]https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7573
Related CVEs
Same vendor
- CVE-2026-50512 — Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privilege... (7.8 HIGH)
- CVE-2026-50511 — Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privilege... (7.8 HIGH)
- CVE-2026-50507 — Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack (6.8 MEDIUM)
- CVE-2026-49161 — Improper access control in Microsoft PC Manager allows an authorized attacker to bypass a security feature locally (7.8 HIGH)
- CVE-2026-49160 — Uncontrolled resource consumption in HTTP/2 allows an unauthorized attacker to deny service over a network (7.5 HIGH)
Same CWE
- CVE-2026-12117 — Improper access control in the social login connection endpoint in Devolutions Server 2026.2.5 allows an authenticated vault member to ...
- CVE-2026-12320 — Information disclosure in the Password Manager component (4.3 MEDIUM)
- CVE-2026-12311 — Information disclosure, sandbox escape in the Security: Process Sandboxing component (4.7 MEDIUM)
- CVE-2026-50870 — An information disclosure vulnerability in the configuration endpoint of Ben Busby whoogle-search v1.2.3 allows attackers to obtain sensi... (7.5 HIGH)
- CVE-2026-39007 — An issue in Observeinc's Observe v.2026-01-28 and before allows a remote attacker to obtain sensitive information via the CSV Log export ... (7.5 HIGH)