CVE-2009-3129 in Officeinfo

Summary

Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a spreadsheet with a FEATHEADER record containing an invalid cbHdrData size element that affects a pointer offset, aka "Excel Featheader Record Memory Corruption Vulnerability."

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

09/10/2009

Disclosure

11/11/2009

Moderation

VulDB entry created

Entries

VDB-50789 (1)

CPE

ready

CWE

CWE-94 (Confirmed)

Exploit

Download

CVSS

8.9

EPSS

0.91648

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2009-3129
NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-3129
CVE Details	https://www.cvedetails.com/cve/CVE-2009-3129/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!