[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote Code Execution Vulnerability in Microsoft Office Project - MS09-074

ID: oval:org.secpod.oval:def:2287Date: (C)2011-09-09   (M)2022-10-10
Class: PATCHFamily: windows




The host is missing a critical security update according to Microsoft security bulletin, MS09-074. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Project, which fails to handle memory allocation for Project files. Successful exploitation allows an attacker to execute arbitrary code via specially crafted Project files.

Platform:
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows Server 2008
Product:
Microsoft Project 2000
Project 2002
Project 2003
Reference:
MS09-074
CVE-2009-0102
CVE    1
CVE-2009-0102
CPE    3
cpe:/a:microsoft:project:2000:sr1
cpe:/a:microsoft:project:2002:sp1
cpe:/a:microsoft:project:2003:sp3
XCCDF    7
xccdf_com.secpod_benchmark_microsoft-windows-2000
xccdf_com.secpod_benchmark_microsoft-windows-vista
xccdf_com.secpod_benchmark_microsoft-windows-server-2008
xccdf_com.secpod_benchmark_microsoft-windows-xp
...

© SecPod Technologies