1. Home
  2. CVE Database
  3. CVE-2009-0559
HIGH · 9.3

CVE-2009-0559

Stack-based buffer overflow in Excel in Microsoft Office 2000 SP3 and Office XP SP3 allows remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "Stri...

Vulnerability Description

Stack-based buffer overflow in Excel in Microsoft Office 2000 SP3 and Office XP SP3 allows remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "String Copy Stack-Based Overrun Vulnerability."

CVSS Score

9.3

HIGH

AV:N/AC:M/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
MicrosoftOffice2004
MicrosoftOffice Compatibility Pack For Word Excel Ppt 2007All versions
MicrosoftOffice Excel2000
MicrosoftOffice Excel ViewerAll versions
MicrosoftOffice Sharepoint Server2007
MicrosoftOpen Xml File Format ConverterAll versions

Related Weaknesses (CWE)

CWE-94

References

FAQ

What is CVE-2009-0559?

CVE-2009-0559 is a vulnerability with a CVSS score of 9.3 (HIGH). Stack-based buffer overflow in Excel in Microsoft Office 2000 SP3 and Office XP SP3 allows remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "Stri...

How severe is CVE-2009-0559?

CVE-2009-0559 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-0559?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Office, Microsoft Office Compatibility Pack For Word Excel Ppt 2007, Microsoft Office Excel, Microsoft Office Excel Viewer, Microsoft Office Sharepoint Server.