Lucene search

[email protected]NVD:CVE-2009-0095

HistoryFeb 10, 2009 - 10:30 p.m.

CVE-2009-0095

2009-02-1022:30:00

CWE-399

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.278 Low

EPSS

Percentile

96.9%

JSON

Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly validate object data in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka “Memory Validation Vulnerability.”

Affected configurations

NVD

Node

microsoftvisioMatch2002sp2

microsoftvisioMatch2003sp3

microsoftvisioMatch2007sp1

References

www.us-cert.gov/cas/techalerts/TA09-041A.html

www.vupen.com/english/advisories/2009/0391

docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-005

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6179

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.278 Low

EPSS

Percentile

96.9%

JSON

Related for NVD:CVE-2009-0095

cvelist1 cve1 prion1 openvas2 securityvulns2 nessus1 checkpoint_advisories2 seebug1