Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0087

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2009-0087
Last Modified 14 Jul 2015 02:09:10
Published 15 Apr 2009 04:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0087

Summary

Unspecified vulnerability in the Word 6 text converter in WordPad in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and the Word 6 text converter in Microsoft Office Word 2000 SP3 and 2002 SP3; allows remote attackers to execute arbitrary code via a crafted Word 6 file that contains malformed data, aka "WordPad and Office Text Converter Memory Corruption Vulnerability."

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2003 Server

  • Microsoft Windows Server 2003

  • Microsoft Windows Srv 2003

  • Microsoft Windows Xp

Application

  • Microsoft Office Word 2000

  • Microsoft Office Word 2002


References

CERT - TA09-104A

MS - MS09-010

VUPEN - ADV-2009-1024

SECTRACK - 1022043

OSVDB - 53662


Last Updated: 27 May 2016 11:09:13