Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-1134
HistoryJun 10, 2009 - 6:30 p.m.

CVE-2009-1134

2009-06-1018:30:00
CWE-94
[email protected]
web.nvd.nist.gov
28
cve-2009-1134
remote code execution
excel
microsoft office
vulnerability
nvd
biff file
record pointer corruption vulnerability

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.768 High

EPSS

Percentile

98.2%

JSON

Excel in 2007 Microsoft Office System SP1 and SP2; Microsoft Office Excel Viewer; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allow remote attackers to execute arbitrary code via a BIFF file with a malformed Qsir (0x806) record object, aka β€œRecord Pointer Corruption Vulnerability.”

Affected configurations

NVD
Node
microsoftofficeMatch2004mac
OR
microsoftofficeMatch2008mac
OR
microsoftofficeMatchxpsp3
OR
microsoftoffice_compatibility_pack_for_word_excel_ppt_2007sp1
OR
microsoftoffice_compatibility_pack_for_word_excel_ppt_2007sp2
OR
microsoftoffice_excelMatch2000sp3
OR
microsoftoffice_excelMatch2003sp3
OR
microsoftoffice_excelMatch2007sp1
OR
microsoftoffice_excelMatch2007sp2
OR
microsoftoffice_excel_viewer
OR
microsoftoffice_excel_viewerMatch2003sp3
OR
microsoftoffice_sharepoint_serverMatch2007sp1x32
OR
microsoftoffice_sharepoint_serverMatch2007sp1x64
OR
microsoftoffice_sharepoint_serverMatch2007sp2x32
OR
microsoftoffice_sharepoint_serverMatch2007sp2x64
OR
microsoftopen_xml_file_format_convertermac

Related

saint 4
securityvulns 3
cvelist 1
checkpoint_advisories 1
nvd 1
zdi 1
prion 1
openvas 2
seebug 1
nessus 1
saint
saint
Microsoft Excel BIFF format Qsir record memory corruption
2009-09-11 00:00:00
Microsoft Excel BIFF format Qsir record memory corruption
2009-09-11 00:00:00
Microsoft Excel BIFF format Qsir record memory corruption
2009-09-11 00:00:00
securityvulns
securityvulns
ZDI-09-040: Microsoft Office Excel QSIR Record Pointer Corruption Vulnerability
2009-06-11 00:00:00
Microsoft Excel multiple security vulnerabilities
2009-06-14 00:00:00
Microsoft Security Bulletin MS09-021 - Critical Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462)
2009-06-10 00:00:00
cvelist
cvelist
CVE-2009-1134
2009-06-10 18:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Excel QSir and QSif Records Pointer Corruption (MS09-021; CVE-2009-1134)
2009-06-09 00:00:00
nvd
nvd
CVE-2009-1134
2009-06-10 18:30:00
zdi
zdi
Microsoft Office Excel QSIR Record Pointer Corruption Vulnerability
2009-06-10 00:00:00
prion
prion
Memory corruption
2009-06-10 18:30:00
openvas
openvas
Microsoft Office Excel Remote Code Execution Vulnerabilities (969462)
2009-06-12 00:00:00
Microsoft Office Excel Remote Code Execution Vulnerabilities (969462)
2009-06-12 00:00:00
seebug
seebug
Microsoft Excelη•Έε½’ε―Ήθ±‘θ§£ζžε€šδΈͺηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž(MS09-021)
2009-06-13 00:00:00
nessus
nessus
MS09-021: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462)
2009-06-10 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.768 High

EPSS

Percentile

98.2%

JSON
Related for CVE-2009-1134
saint4securityvulns3cvelist1checkpoint_advisories1nvd1zdi1prion1openvas2seebug1nessus1