Microsoft Office Excel String Copy Stack-Based Overrun Vulnerability
Publish Date: 21 juillet 2015
Gravité: : Critique
Identifiant(s) CVE: : CVE-2009-0559,MS09-021
Date du conseil: 21 juillet 2015
Description
Stack-based buffer overflow in Excel in Microsoft Office 2000 SP3 and Office XP SP3 allows remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "String Copy Stack-Based Overrun Vulnerability."
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1003556
Trend Micro Deep Security DPI Rule Name: 1003556 - Microsoft Office Excel String Copy Stack-Based Overrun Vulnerability
Affected software and version:
- microsoft office 2004
- microsoft office 2008
- microsoft office xp
- microsoft office_compatibility_pack_for_word_excel_ppt_2007
- microsoft office_excel 2000
- microsoft office_excel 2003
- microsoft office_excel 2007
- microsoft office_excel_viewer 2003
- microsoft office_sharepoint_server 2007
- microsoft open_xml_file_format_converter