Home / bulletins MS09-060 - Critical: Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965) - Version:1.2
Posted on 04 November 2009
There is an newer version: MS09-060 - Version: 1.5
CriticalSeverity Rating: Critical - Revision Note: V1.2 (November 4, 2009): Removed erroneous references to Microsoft Office Visio Viewer 2007 as affected software.Summary: This security update resolves several privately reported vulnerabilities in ActiveX Controls for Microsoft Office that were compiled with a vulnerable version of Microsoft Active Template Library (ATL). The vulnerabilities could allow remote code execution if a user loaded a specially crafted component or control. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Other versions
- MS09-060 - Version: 1.1
- MS09-060 - Version: 1.2
- MS09-060 - Version: 1.0
- MS09-060 - Version: 1.3
- MS09-060 - Version: 1.4
- MS09-060 - Version: 1.5