9.3
CVE-2009-0102
- EPSS 47.22%
- Published 09.12.2009 18:30:00
- Last modified 09.04.2025 00:30:58
- Source secure@microsoft.com
- Teams watchlist Login
- Open Login
Microsoft Project 2000 SR1 and 2002 SP1, and Office Project 2003 SP3, does not properly handle memory allocation for Project files, which allows remote attackers to execute arbitrary code via a malformed file, aka "Project Memory Validation Vulnerability."
Data is provided by the National Vulnerability Database (NVD)
Microsoft ≫ Office Project Version2007 Updatesp1
Microsoft ≫ Office Project Version2007 Updatesp2
Microsoft ≫ Project Portfolio Server Version2007 Updatesp1
Microsoft ≫ Project Portfolio Server Version2007 Updatesp2
Microsoft ≫ Project Server Version2003 Updatesp3
Microsoft ≫ Project Server Version2007 Updatesp1
Microsoft ≫ Project Server Version2007 Updatesp2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 47.22% | 0.976 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|