9.3
CVE-2009-0556
- EPSS 67.54%
- Veröffentlicht 03.04.2009 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:05:17
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3, and PowerPoint in Microsoft Office 2004 for Mac, allows remote attackers to execute arbitrary code via a PowerPoint file with an OutlineTextRefAtom containing an an invalid index value that triggers memory corruption, as exploited in the wild in April 2009 by Exploit:Win32/Apptom.gen, aka "Memory Corruption Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Office Powerpoint Version2004
Microsoft ≫ Powerpoint Version2000 Updatesp3
Microsoft ≫ Powerpoint Version2002 Updatesp3
Microsoft ≫ Powerpoint Version2003 Updatesp3
07.01.2026: CISA Known Exploited Vulnerabilities (KEV) Catalog
Microsoft Office PowerPoint Code Injection Vulnerability
SchwachstelleMicrosoft Office PowerPoint contains a code injection vulnerability that allows remote attackers to execute arbitrary code via a PowerPoint file with an OutlineTextRefAtom containing an invalid index value that triggers memory corruption.
BeschreibungApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Erforderliche Maßnahmen| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 67.54% | 0.992 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
CWE-94 Improper Control of Generation of Code ('Code Injection')
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.
Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
http://blogs.technet.com/mmpc/archive/2009/04/02/new-0-day-exploits-using-powerpoint-files.aspx
http://blogs.technet.com/msrc/archive/2009/04/02/microsoft-security-advisory-969136.aspx
http://blogs.technet.com/srd/archive/2009/04/02/investigating-the-new-powerpoint-issue.aspx
http://osvdb.org/53182
http://secunia.com/advisories/34572
http://www.kb.cert.org/vuls/id/627331
http://www.microsoft.com/technet/security/advisory/969136.mspx
http://www.securityfocus.com/archive/1/503453/100/0/threaded
http://www.securityfocus.com/bid/34351
http://www.securitytracker.com/id?1021967
http://www.us-cert.gov/cas/techalerts/TA09-132A.html
http://www.vupen.com/english/advisories/2009/0915
http://www.vupen.com/english/advisories/2009/1290
http://www.zerodayinitiative.com/advisories/ZDI-09-019
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-017
https://exchange.xforce.ibmcloud.com/vulnerabilities/49632
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6204
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6279
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2009-0556