Lucene search
HistoryDec 09, 2009 - 6:30 p.m.
CVE-2009-0102
microsoft
project
cve-2009-0102
vulnerability
remote code execution
memory allocation
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
Low
0.861 High
EPSS
Percentile
98.6%
Microsoft Project 2000 SR1 and 2002 SP1, and Office Project 2003 SP3, does not properly handle memory allocation for Project files, which allows remote attackers to execute arbitrary code via a malformed file, aka βProject Memory Validation Vulnerability.β
Affected configurations
Node
microsoftoffice_projectMatch2007sp1
ORmicrosoftoffice_projectMatch2007sp2
ORmicrosoftproject_portfolio_serverMatch2007sp1
ORmicrosoftproject_portfolio_serverMatch2007sp2
ORmicrosoftproject_serverMatch2003sp3
ORmicrosoftproject_serverMatch2007sp1
ORmicrosoftproject_serverMatch2007sp2
Related
prion
prion
Input validation
2009-12-09 18:30:00
seebug
seebug
openvas
openvas
Microsoft Office Project Remote Code Execution Vulnerability (967183)
2009-12-14 00:00:00
Microsoft Office Project Remote Code Execution Vulnerability (967183)
2009-12-14 00:00:00
nvd
nvd
CVE-2009-0102
2009-12-09 18:30:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
Microsoft Security Bulletin MS09-074 - Critical Vulnerability in Microsoft Office Project Could Allow Remote Code Execution (967183)
2009-12-09 00:00:00
Microsoft Project memory corruption
2009-12-09 00:00:00
Fortinet Advisory: Fortinet Discovers Microsoft Office Project Vulnerability
2009-12-09 00:00:00
nessus
nessus
cvelist
cvelist
CVE-2009-0102
2009-12-09 18:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
Low
0.861 High
EPSS
Percentile
98.6%
Related for CVE-2009-0102