CVE-2009-0568

N/A Unknown

Published: June 10, 2009 Modified: April 23, 2026

Description

The RPC Marshalling Engine (aka NDR) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly maintain its internal state, which allows remote attackers to overwrite arbitrary memory locations via a crafted RPC message that triggers incorrect pointer reading, related to "IDL interfaces containing a non-conformant varying array" and FC_SMVARRAY, FC_LGVARRAY, FC_VARIABLE_REPEAT, and FC_VARIABLE_OFFSET, aka "RPC Marshalling Engine Vulnerability."

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://blogs.technet.com/srd/archive/2009/06/09/ms09-026-how-a-developer-can-know-if-their-rpc-interface-is-affected.aspx

Source: secure@microsoft.com

Vendor Advisory

http://osvdb.org/54936

Source: secure@microsoft.com

Broken Link

http://www.securityfocus.com/bid/35219

Source: secure@microsoft.com

Third Party Advisory VDB Entry

http://www.securitytracker.com/id?1022357

Source: secure@microsoft.com

Third Party Advisory VDB Entry

http://www.us-cert.gov/cas/techalerts/TA09-160A.html

Source: secure@microsoft.com

Third Party Advisory US Government Resource

http://www.vupen.com/english/advisories/2009/1545

Source: secure@microsoft.com

Third Party Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-026

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6227

Source: secure@microsoft.com

Third Party Advisory

http://blogs.technet.com/srd/archive/2009/06/09/ms09-026-how-a-developer-can-know-if-their-rpc-interface-is-affected.aspx

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://osvdb.org/54936

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://www.securityfocus.com/bid/35219

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory VDB Entry

http://www.securitytracker.com/id?1022357

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory VDB Entry

http://www.us-cert.gov/cas/techalerts/TA09-160A.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory US Government Resource

http://www.vupen.com/english/advisories/2009/1545

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-026

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6227

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

16 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

56.2%

98th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-264

Affected Vendors

microsoft

Related CVEs

CVE-2026-7041 3.7

CVE-2026-7039 7.8

CVE-2026-7038 3.3

CVE-2026-7037 9.8

CVE-2026-7036 7.3