Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2009-0557
HistoryJun 10, 2009 - 6:30 p.m.

CVE-2009-0557

2009-06-1018:30:00
CWE-94
[email protected]
web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

Low

0.939 High

EPSS

Percentile

99.2%

JSON

Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Office System SP1 and SP2; Open XML File Format Converter for Mac; Microsoft Office Excel Viewer 2003 SP3; Microsoft Office Excel Viewer; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allow remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka β€œObject Record Corruption Vulnerability.”

Affected configurations

NVD
Node
microsoftofficeMatch2000sp3
OR
microsoftofficeMatch2003sp3
OR
microsoftofficeMatch2004macos
OR
microsoftofficeMatch2007sp1
OR
microsoftofficeMatch2007sp2
OR
microsoftofficeMatch2008macos
OR
microsoftofficeMatchxpsp3
OR
microsoftoffice_excel_viewerMatch-
OR
microsoftoffice_excel_viewerMatch2003sp3
OR
microsoftoffice_sharepoint_serverMatch2007sp1
OR
microsoftoffice_sharepoint_serverMatch2007sp2

Related

cisa_kev 1
attackerkb 1
prion 1
cvelist 1
cve 1
checkpoint_advisories 2
openvas 2
seebug 1
securityvulns 2
nessus 2
cisa_kev
cisa_kev
Microsoft Office Object Record Corruption Vulnerability
2022-06-08 00:00:00
attackerkb
attackerkb
CVE-2009-0557
2009-06-10 00:00:00
prion
prion
Memory corruption
2009-06-10 18:30:00
cvelist
cvelist
CVE-2009-0557
2009-06-10 18:00:00
cve
cve
CVE-2009-0557
2009-06-10 18:30:00
checkpoint_advisories
checkpoint_advisories
Microsoft Office Excel OBJ Record Parsing Remote Code Execution - Ver2 (CVE-2009-0557)
2014-03-03 00:00:00
Microsoft Excel Object Record Memory Corruption (MS09-021; CVE-2009-0557)
2009-06-09 00:00:00
openvas
openvas
Microsoft Office Excel Remote Code Execution Vulnerabilities (969462)
2009-06-12 00:00:00
Microsoft Office Excel Remote Code Execution Vulnerabilities (969462)
2009-06-12 00:00:00
seebug
seebug
Microsoft Excelη•Έε½’ε―Ήθ±‘θ§£ζžε€šδΈͺηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž(MS09-021)
2009-06-13 00:00:00
securityvulns
securityvulns
Microsoft Excel multiple security vulnerabilities
2009-06-14 00:00:00
Microsoft Security Bulletin MS09-021 - Critical Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462)
2009-06-10 00:00:00
nessus
nessus
MS09-021: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462)
2009-06-10 00:00:00
MS09-017 / MS09-021 / MS09-027: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (967340 / 969462 / 969514) (Mac OS X)
2010-10-20 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

Low

0.939 High

EPSS

Percentile

99.2%

JSON
Related for NVD:CVE-2009-0557
cisa_kev1attackerkb1prion1cvelist1cve1checkpoint_advisories2openvas2seebug1securityvulns2nessus2