Home / bulletins MS09-035 - Moderate: Vulnerabilities in Visual Studio Active Template Library Could Allow Remote Code Execution (969706) - Version:3.0
Posted on 12 January 2010
ModerateSeverity Rating: Moderate - Revision Note: V3.0 (January 12, 2010): Rereleased this bulletin to add Windows Embedded CE 6.0 to affected software. The new update for Windows Embedded CE 6.0 (KB974616) is available from the Microsoft Download Center only. Customers using the Windows Embedded CE 6.0 platform should consider applying the update. No other update packages are affected by this rerelease.Summary: This security update addresses several privately reported vulnerabilities in the public versions of the Microsoft Active Template Library (ATL) included with Visual Studio. This security update is specifically intended for developers of components and controls. Developers who build and redistribute components and controls using ATL should install the update provided in this bulletin and follow the guidance provided to create, and distribute to their customers, components and controls that are not vulnerable to the vulnerabilities described in this security bulletin.
Other versions
- MS09-035 - Version: 1.1
- MS09-035 - Version: 2.0
- MS09-035 - Version: 2.1
- MS09-035 - Version: 2.2
- MS09-035 - Version: 1.0
- MS09-035 - Version: 2.3
- MS09-035 - Version: 3.0
