[Forgot Password]
Login  Register Subscribe

23631

 
 

117918

 
 

98218

 
 

909

 
 

79224

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote Code Execution Vulnerability in Microsoft Office Project - MS09-074

ID: oval:org.secpod.oval:def:2287Date: (C)2011-09-09   (M)2017-10-04
Class: PATCHFamily: windows




The host is missing a critical security update according to Microsoft security bulletin, MS09-074. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Project, which fails to handle memory allocation for Project files. Successful exploitation allows an attacker to execute arbitrary code via specially crafted Project files.

Platform:
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows Server 2008
Product:
Microsoft Project 2000
Project 2002
Project 2003
Reference:
MS09-074
CVE-2009-0102
CVE    1
CVE-2009-0102
CPE    3
cpe:/a:microsoft:project:2003:sp3
cpe:/a:microsoft:project:2000:sr1
cpe:/a:microsoft:project:2002:sp1
XCCDF    7
xccdf_com.secpod_benchmark_microsoft-windows-7
xccdf_com.secpod_benchmark_microsoft-windows-vista
xccdf_com.secpod_benchmark_microsoft-windows-server-2008
xccdf_com.secpod_benchmark_microsoft-windows-xp
...

© 2013 SecPod Technologies