Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2009-3132
HistoryNov 11, 2009 - 8:30 p.m.

CVE-2009-3132

2009-11-1120:30:00
CWE-94
[email protected]
web.nvd.nist.gov
3

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.587 Medium

EPSS

Percentile

97.8%

JSON

Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allow remote attackers to execute arbitrary code via a spreadsheet containing a malformed formula, related to a “pointer corruption” issue, aka “Excel Index Parsing Vulnerability.”

Affected configurations

NVD
Node
microsoftcompatibility_pack_word_excel_powerpointMatch2007sp1
OR
microsoftcompatibility_pack_word_excel_powerpointMatch2007sp2
OR
microsoftexcelMatch2002sp3
OR
microsoftexcelMatch2003sp3
OR
microsoftexcelMatch2007sp1
OR
microsoftexcelMatch2007sp2
OR
microsoftexcel_viewersp1
OR
microsoftexcel_viewersp2
OR
microsoftexcel_viewerMatch2003sp3
OR
microsoftofficeMatch2004mac
OR
microsoftofficeMatch2008mac
OR
microsoftopen_xml_file_format_convertermac

Related

cvelist 1
cve 1
checkpoint_advisories 2
prion 1
securityvulns 3
nessus 2
openvas 2
cvelist
cvelist
CVE-2009-3132
2009-11-11 20:00:00
cve
cve
CVE-2009-3132
2009-11-11 20:30:00
checkpoint_advisories
checkpoint_advisories
Microsoft Office Excel Index Parsing Pointer Corruption Code Execution - Ver2 (CVE-2009-3132)
2014-04-16 00:00:00
Microsoft Office Excel Index Parsing Pointer Corruption (MS09-067; CVE-2009-3132)
2009-11-10 00:00:00
prion
prion
Design/Logic Flaw
2009-11-11 20:30:00
securityvulns
securityvulns
VUPEN Security Research - Microsoft Office Excel Code Execution Vulnerabilities
2009-11-12 00:00:00
Microsoft Excel multiple security vulnerabilities
2009-11-12 00:00:00
Microsoft Security Bulletin MS09-067 - Important Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (972652)
2009-11-11 00:00:00
nessus
nessus
MS09-067 / MS09-068: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (972652 / 976307) (Mac OS X)
2010-10-20 00:00:00
MS09-067: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (972652)
2009-11-10 00:00:00
openvas
openvas
Microsoft Office Excel Multiple Vulnerabilities (972652)
2009-11-11 00:00:00
Microsoft Office Excel Multiple Vulnerabilities (972652)
2009-11-11 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.587 Medium

EPSS

Percentile

97.8%

JSON
Related for NVD:CVE-2009-3132
cvelist1cve1checkpoint_advisories2prion1securityvulns3nessus2openvas2