| Patch Name : |
WindowsXP-SP3-KB970483-x86-ENU.exe |
| Patch Description : |
Security Update for Windows XP (KB970483) |
| Bulletin Id : |
MS09-020 |
| Bulletin Title : |
Vulnerabilities in Internet Information Services (IIS) Could Allow Elevation of Privilege (970483) |
| KnowledgeBase : | 970483 |
| Severity : |
Important |
| Location Path : | WindowsXP-SP3-KB970483-x86-ENU.exe |
| Bulletin Summary: |
This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Microsoft Internet Information Services(IIS). The vulnerabilities could allow elevation of privilege if an attacker sent a specially crafted HTTP request to a Web site that requires authentication.This security update is rated Important for Microsoft Internet Information Services on all supported editions of Microsoft Windows 2000, Windows XP, and Windows Server 2003. |
| Superceding Bulletin Id : |
None |
| Patch Release Date : |
Jun 9, 2009 |
| CVE Id : | CVE-2009-1535 |
| Affected Product Information |
|
| Product Name |
Service Pack Name |
| Internet Information Services 5.1 | Windows XP Service Pack 3 |
|
| File changes |
|
| File Path |
Version |
| %windir%\system32\inetsrv\Httpext.dll | 6.0.2600.5817 |
|
| Registry changes |
|
| Registry Path |
Key Name |
Key Value |
| HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows XP\SP4\KB970483 | | -2 |
|
