CVE-2009-2506

Published Dec 9, 2009

Last updated 6 years ago

Overview

Description: Integer overflow in the text converters in Microsoft Office Word 2002 SP3 and 2003 SP3; Works 8.5; Office Converter Pack; and WordPad in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to execute arbitrary code via a DOC file with an invalid number of property names in the DocumentSummaryInformation stream, which triggers a heap-based buffer overflow.
Source: secure@microsoft.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 9.3
Impact score: 10
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-189

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83E7C4A0-78CF-4B56-82BF-EC932BDD8ADF"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D3B5E4F-56A6-4696-BBB4-19DF3613D020"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B339C33-8896-4896-88FF-88E74FDBC543"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:x64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57ECAAA8-8709-4AC7-9CE7-49A8040C04D3"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE477A73-4EE4-41E9-8694-5A3D5DC88656"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:microsoft:office_converter_pack:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C6C8409-397E-40DF-A645-6409189D450D"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:office_word:2002:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E99B12F-0DB7-4D0F-AD54-DD906CC8E3BD"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:office_word:2003:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CDA5243A-BA58-41BC-8FFC-317239E511C2"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:wordpad:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2531DDF2-D2AA-4919-B756-28478AEA5AA3"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:works:8.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83EE0CCD-69AD-4705-9BB0-24688F7957F1"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References