Microsoft Office Excel String Copy Stack-Based Overrun Vulnerability
Severity: : Critical
CVE Kennungen: : CVE-2009-0559,MS09-021
Advisory Date: 21 lipca 2015
DESCRIPTION
Stack-based buffer overflow in Excel in Microsoft Office 2000 SP3 and Office XP SP3 allows remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "String Copy Stack-Based Overrun Vulnerability."
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1003556
Trend Micro Deep Security DPI Rule Name: 1003556 - Microsoft Office Excel String Copy Stack-Based Overrun Vulnerability
AFFECTED SOFTWARE AND VERSION:
- microsoft office 2004
- microsoft office 2008
- microsoft office xp
- microsoft office_compatibility_pack_for_word_excel_ppt_2007
- microsoft office_excel 2000
- microsoft office_excel 2003
- microsoft office_excel 2007
- microsoft office_excel_viewer 2003
- microsoft office_sharepoint_server 2007
- microsoft open_xml_file_format_converter