1. Home
  2. CVE Database
  3. CVE-2009-0565
HIGH · 9.3

CVE-2009-0565

Buffer overflow in Microsoft Office Word 2000 SP3, 2002 SP3, and 2007 SP1 and SP2; Microsoft Office for Mac 2004 and 2008; Open XML File Format Converter for Mac; and Microsoft Office Compatibility Pa...

Vulnerability Description

Buffer overflow in Microsoft Office Word 2000 SP3, 2002 SP3, and 2007 SP1 and SP2; Microsoft Office for Mac 2004 and 2008; Open XML File Format Converter for Mac; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a Word document with a malformed record that triggers memory corruption, aka "Word Buffer Overflow Vulnerability."

CVSS Score

9.3

HIGH

AV:N/AC:M/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
MicrosoftOffice2004
MicrosoftOffice Compatibility Pack For Word Excel Ppt 2007All versions
MicrosoftOffice Word2000
MicrosoftOffice Word ViewerAll versions
MicrosoftOpen Xml File Format ConverterAll versions

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2009-0565?

CVE-2009-0565 is a vulnerability with a CVSS score of 9.3 (HIGH). Buffer overflow in Microsoft Office Word 2000 SP3, 2002 SP3, and 2007 SP1 and SP2; Microsoft Office for Mac 2004 and 2008; Open XML File Format Converter for Mac; and Microsoft Office Compatibility Pa...

How severe is CVE-2009-0565?

CVE-2009-0565 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-0565?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Office, Microsoft Office Compatibility Pack For Word Excel Ppt 2007, Microsoft Office Word, Microsoft Office Word Viewer, Microsoft Open Xml File Format Converter.