Oval Definition:
oval:org.mitre.oval:def:6273
Revision Date
:
2014-06-30
Version
:
8
Title
:
String Copy Stack-Based Overrun Vulnerability
Description
:
Stack-based buffer overflow in Excel in Microsoft Office 2000 SP3 and Office XP SP3 allows remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "String Copy Stack-Based Overrun Vulnerability."
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2009-0559
Platform(s)
:
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s)
:
Microsoft Excel 2000
Microsoft Excel 2002
Definition Synopsis
AND
Microsoft Excel 2000 is installed
AND
Excel.exe version is less than 9.0.0.8979
OR
Microsoft Excel 2002 is installed
AND
Excel.exe version is less than 10.0.6854.0
BACK