{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Windows Server 2003 Service Pack 2 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows Server 2008 pour syst\u00e8mes Itanium et Windows Server 2008 pour syst\u00e8mes Itanium Service Pack 2 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows Server 2008 pour syst\u00e8mes 32-bit et Windows Server 2008 pour syst\u00e8mes 32-bit Service Pack 2 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows Server 2008 R2 pour syst\u00e8mes Itanium.","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows XP Service Pack 2 et Windows XP Service Pack 3 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows Server 2008 R2 pour syst\u00e8mes x64 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows XP Professional x64 Edition Service Pack 2 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, et Windows Vista x64 Edition Service Pack 2 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows 7 pour syst\u00e8mes 32-bit ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows Server 2003 x64 Edition Service Pack 2 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows Server 2003 with SP2 pour syst\u00e8mes Itanium ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows 7 pour syst\u00e8mes x64 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows Vista, Windows Vista Service Pack 1, et Windows Vista Service Pack 2 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Windows Server 2008 pour syst\u00e8mes x64 et Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 de type d\u00e9bordement d'entier dans le service Local\nSecurity Authority Subsystem Service, caus\u00e9e par une erreur dans le\ntraitement de paquets malform\u00e9s durant une proc\u00e9dure d'authentification\nNTLM (NT Lan Manager), peut \u00eatre exploit\u00e9e afin de provoquer un arr\u00eat du\nservice et le red\u00e9marrage du syst\u00e8me.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2009-2524","url":"https://www.cve.org/CVERecord?id=CVE-2009-2524"}],"links":[],"reference":"CERTA-2009-AVI-439","revisions":[{"description":"version initiale.","revision_date":"2009-10-14T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 dans le service <span class=\"textit\">Local Security\nAuthority Subsystem Service</span> (LSASS) permet \u00e0 un utilisateur\nmalintentionn\u00e9 de r\u00e9aliser un d\u00e9ni de service \u00e0 distance.\n","title":"Vuln\u00e9rabilit\u00e9 dans Local Security Authority Subsystem Service","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft MS09-059 du 13 octobre 2009","url":"http://www.microsoft.com/technet/security/Bulletin/MS09-059.mspx"}]}