NVD

Id
18  
Name
CVE-2008-0020  
Description
Unspecified vulnerability in the Load method in the IPersistStreamInit interface in the Active Template Library (ATL), as used in the Microsoft Video ActiveX control in msvidctl.dll in DirectShow, in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via unknown vectors that trigger memory corruption, aka "ATL Header Memcopy Vulnerability," a different vulnerability than CVE-2008-0015.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2009-07-07  
Modified Date
2010-08-21  
Seq
2008-0020  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
280 18 CVE-2008-0020 http://blogs.technet.com/srd/archive/2009/08/11/ms09-037-why-we-are-using-cve-s-already-used-in-ms09-035.aspx  View
281 18 CVE-2008-0020 oval:org.mitre.oval:def:5850  View
282 18 CVE-2008-0020 20090706 Multiple Microsoft Video Control ActiveX Remote Code Execution Vulnerabilities  View
283 18 CVE-2008-0020 MS09-037  View
284 18 CVE-2008-0020 1022712  View
285 18 CVE-2008-0020 TA09-223A  View
286 18 CVE-2008-0020 ADV-2009-2232  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40880 JVNDB-2009-001886 Microsoft Video ActiveX control における任意のコードを実行される脆弱性 msvidctl.dll にある Microsoft Video ActiveX control には、任意のコードを実行される脆弱性が存在します。 CVE-2008-0020 30133 CVE-2008-0020 18 9.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001886.html 2009-07-07 2009-08-17 View