Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:2D4090D757677B23C78813400F4A79A9
HistorySep 11, 2009 - 12:00 a.m.

Microsoft Excel BIFF format Qsir record memory corruption

2009-09-1100:00:00
SAINT Corporation
download.saintcorporation.com
8

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.768 High

EPSS

Percentile

98.2%

JSON

Added: 09/11/2009
CVE: CVE-2009-1134
BID: 35246
OSVDB: 54958

Background

Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms.

Problem

A memory corruption vulnerability allows command execution when a user closes a spreadsheet file containing a specially crafted Qsir record.

Resolution

Apply the patch referenced in Microsoft Security Bulletin 09-021.

References

<http://www.zerodayinitiative.com/advisories/ZDI-09-040/&gt;

Limitations

Exploit works on Microsoft Excel 2007 SP1 and requires a user to open and then close the exploit file in Microsoft Excel.

There may be a delay before the exploit succeeds after the file is closed.

This exploit requires the IO::Uncompress and Compress::Zlib PERL modules.

Platforms

Windows XP

Related

zdi 1
cve 1
saint 3
prion 1
securityvulns 3
cvelist 1
checkpoint_advisories 1
nvd 1
openvas 2
seebug 1
nessus 1
zdi
zdi
Microsoft Office Excel QSIR Record Pointer Corruption Vulnerability
2009-06-10 00:00:00
cve
cve
CVE-2009-1134
2009-06-10 18:30:00
saint
saint
Microsoft Excel BIFF format Qsir record memory corruption
2009-09-11 00:00:00
Microsoft Excel BIFF format Qsir record memory corruption
2009-09-11 00:00:00
Microsoft Excel BIFF format Qsir record memory corruption
2009-09-11 00:00:00
prion
prion
Memory corruption
2009-06-10 18:30:00
securityvulns
securityvulns
ZDI-09-040: Microsoft Office Excel QSIR Record Pointer Corruption Vulnerability
2009-06-11 00:00:00
Microsoft Excel multiple security vulnerabilities
2009-06-14 00:00:00
Microsoft Security Bulletin MS09-021 - Critical Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution &#40;969462&#41;
2009-06-10 00:00:00
cvelist
cvelist
CVE-2009-1134
2009-06-10 18:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Excel QSir and QSif Records Pointer Corruption (MS09-021; CVE-2009-1134)
2009-06-09 00:00:00
nvd
nvd
CVE-2009-1134
2009-06-10 18:30:00
openvas
openvas
Microsoft Office Excel Remote Code Execution Vulnerabilities (969462)
2009-06-12 00:00:00
Microsoft Office Excel Remote Code Execution Vulnerabilities (969462)
2009-06-12 00:00:00
seebug
seebug
Microsoft Excel畸形对象解析多个缓冲区溢出漏洞(MS09-021)
2009-06-13 00:00:00
nessus
nessus
MS09-021: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462)
2009-06-10 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.768 High

EPSS

Percentile

98.2%

JSON
Related for SAINT:2D4090D757677B23C78813400F4A79A9
zdi1cve1saint3prion1securityvulns3cvelist1checkpoint_advisories1nvd1openvas2seebug1nessus1