[Forgot Password]
Login  Register Subscribe

24003

 
 

131573

 
 

108530

 
 

909

 
 

85343

 
 

134

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote Code Execution Vulnerability in Microsoft Office Project - MS09-074

ID: oval:org.secpod.oval:def:2287Date: (C)2011-09-09   (M)2018-05-13
Class: PATCHFamily: windows




The host is missing a critical security update according to Microsoft security bulletin, MS09-074. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Project, which fails to handle memory allocation for Project files. Successful exploitation allows an attacker to execute arbitrary code via specially crafted Project files.

Platform:
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows Server 2008
Product:
Microsoft Project 2000
Project 2002
Project 2003
Reference:
MS09-074
CVE-2009-0102
CVE    1
CVE-2009-0102
CPE    3
cpe:/a:microsoft:project:2000:sr1
cpe:/a:microsoft:project:2002:sp1
cpe:/a:microsoft:project:2003:sp3
XCCDF    7
xccdf_com.secpod_benchmark_microsoft-windows-xp
xccdf_com.secpod_benchmark_microsoft-windows-server-2003
xccdf_scaprepo.com_benchmark_microsoft-windows-server-2003
xccdf_com.secpod_benchmark_microsoft-windows-vista
...

© SecPod Technologies