What is CVE-2009-2532?

CVE-2009-2532 is a vulnerability in N/a. Published 2009-10-14.

Is CVE-2009-2532 known to be exploited?

9 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2009-2532

Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC do not properly process the command value in an SMB Multi-Protocol Negotiate Request packet, which allows remote attackers to execute arbitrary…

EPSS: 0.618 (98.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores
Al1ex/WindowsElevation
Ascotbe/Kernelhub
Cruxer8Mech/Idk
EricwentwithCyber/Vulnerability-Scan-Lab
fei9747/WindowsElevation
lyshark/Windows-exploits
uroboros-security/SMB-CVE
ycdxsb/WindowsPrivilegeEscalation

References

MS09-050 (x_refsource_MS, vendor-advisory)
TA09-286A (x_refsource_CERT, third-party-advisory)
oval:org.mitre.oval:def:6336 (x_refsource_OVAL, signature, vdb-entry)

Frequently asked questions

What is CVE-2009-2532?: CVE-2009-2532 is a vulnerability in N/a. Published 2009-10-14.
Is CVE-2009-2532 known to be exploited?: 9 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.