CVE-2009-0559

Published: Jun 10, 2009Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Stack-based buffer overflow in Excel in Microsoft Office 2000 SP3 and Office XP SP3 allows remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "String Copy Stack-Based Overrun Vulnerability."

Affected (16)

Products: Microsoft: Office, Office Compatibility Pack For Word Excel Ppt 2007, Office Excel, Office Excel Viewer, Office Sharepoint Server, Open Xml File Format Converter

Microsoft

6 products

Office

Office Compatibility Pack For Word Excel Ppt 2007

Office Excel

Office Excel Viewer

Office Sharepoint Server

Open Xml File Format Converter

Configuration A

16 vulnerable

Vulnerable Software	Affected Versions
Microsoft Office	Version 2004
Microsoft Office	Version 2008
Microsoft Office	Version xp sp3
Microsoft Office Compatibility Pack For Word Excel Ppt 2007	All versions
Microsoft Office Compatibility Pack For Word Excel Ppt 2007	All versions
Microsoft Office Excel	Version 2000 sp3
Microsoft Office Excel	Version 2003 sp3
Microsoft Office Excel	Version 2007 sp1
Microsoft Office Excel	Version 2007 sp2
Microsoft Office Excel Viewer	All versions
Microsoft Office Excel Viewer	Version 2003 sp3
Microsoft Office Sharepoint Server	Version 2007 sp1
Microsoft Office Sharepoint Server	Version 2007 sp1
Microsoft Office Sharepoint Server	Version 2007 sp2
Microsoft Office Sharepoint Server	Version 2007 sp2
Microsoft Open Xml File Format Converter	All versions