Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.9
CVSSv2

CVE-2009-0229

Published: 10/06/2009 Updated: 07/12/2023
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
VMScore: 436
Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N
Subscribe to Microsoft

Vulnerability Summary

The Windows Printing Service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows local users to read arbitrary files via a crafted separator page, aka "Print Spooler Read File Vulnerability."

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft windows 2003 server sp2

microsoft windows vista gold

microsoft windows server 2008 sp2

microsoft windows server 2008 -

microsoft windows xp -

microsoft windows server 2008

microsoft windows 2000 sp4

microsoft windows xp sp3

microsoft windows vista

microsoft windows vista sp1

microsoft windows vista sp2

Github Repositories

https://github.com/zveriu/CVE-2009-0229-PoC

PoC for CVE-2009-0229 "Print Spooler Read File Vulnerability" LPE AFR (related to CVE-2020-1048)

CVE-2009-0229-PoC PoC for CVE-2009-0229 "Print Spooler Read File Vulnerability" LPE AFR (related to CVE-2020-1048) Details Author: Andrei Costin (zveriu@gmailcom) twittercom/costinandrei/ PoC date: 2010-xx-xx Release date: 2020-05-14 (reminded/inspired by CVE-2020-1048 - yes, I am too late to the party :D ) TL;DR If you want 0days, dig Printing and Faxi

References

CWE-200http://www.securityfocus.com/bid/35208http://www.securitytracker.com/id?1022352http://www.vupen.com/english/advisories/2009/1541http://osvdb.org/54933http://support.avaya.com/elmodocs2/security/ASA-2009-217.htmhttp://secunia.com/advisories/35365http://www.us-cert.gov/cas/techalerts/TA09-160A.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5815https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-022https://nvd.nist.govhttps://github.com/zveriu/CVE-2009-0229-PoC
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validationCVE-2024-34413CVE-2024-34089CVE-2024-33408localSQLCVE-2024-0402CVE-2024-33910CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook