1. Home
  2. CVE Database
  3. CVE-2009-0549
HIGH · 9.3

CVE-2009-0549

Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; and Microsoft Office Excel Viewer 2003 SP3 allow remote at...

Vulnerability Description

Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; and Microsoft Office Excel Viewer 2003 SP3 allow remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "Record Pointer Corruption Vulnerability."

CVSS Score

9.3

HIGH

AV:N/AC:M/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
MicrosoftOffice2004
MicrosoftOffice Compatibility Pack For Word Excel Ppt 2007All versions
MicrosoftOffice Excel2000
MicrosoftOffice Excel ViewerAll versions
MicrosoftOffice Sharepoint Server2007
MicrosoftOpen Xml File Format ConverterAll versions

Related Weaknesses (CWE)

CWE-94

References

FAQ

What is CVE-2009-0549?

CVE-2009-0549 is a vulnerability with a CVSS score of 9.3 (HIGH). Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; and Microsoft Office Excel Viewer 2003 SP3 allow remote at...

How severe is CVE-2009-0549?

CVE-2009-0549 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-0549?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Office, Microsoft Office Compatibility Pack For Word Excel Ppt 2007, Microsoft Office Excel, Microsoft Office Excel Viewer, Microsoft Office Sharepoint Server.