Memory Corruption Vulnerability in Microsoft Office Excel and Open XML Converter
CVE-2009-3133

Currently unrated

Key Information:

Vendor: Microsoft
Status: Open Xml File Format Converter; Office; Excel; Excel Viewer
Vendor: CVE Published:; 11 November 2009

Summary

The vulnerability allows remote attackers to execute arbitrary code via a specially crafted spreadsheet. This occurs due to memory corruption when Microsoft Office Excel and the Open XML File Format Converter for Mac process malformed objects, particularly during the loading of Excel records. Attackers exploiting this vulnerability can potentially take control of an affected system, leading to unauthorized actions and data breaches.

References

http://www.securitytracker.com/id?1023157

vdb-entryx_refsource_SECTRACK

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.us-cert.gov/cas/techalerts/TA09-314A.html

third-party-advisoryx_refsource_CERT

EPSS Score

56% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Nov 11, 2009
Vulnerability Reserved
Sep 10, 2009