VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Jun 10, 2009· Updated Apr 23, 2026

CVE-2009-0559

CVE-2009-0559

Description

Stack-based buffer overflow in Excel in Microsoft Office 2000 SP3 and Office XP SP3 allows remote attackers to execute arbitrary code via a crafted Excel file with a malformed record object, aka "String Copy Stack-Based Overrun Vulnerability."

Affected products

16
  • Microsoft/Office3 versions
    cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*+ 2 more
    • cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
  • Microsoft/Office Compatibility Pack For Word Excel Ppt 20072 versions
    cpe:2.3:a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:sp2:*:*:*:*:*:*
  • Microsoft/Office Excel4 versions
    cpe:2.3:a:microsoft:office_excel:2000:sp3:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:office_excel:2000:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_excel:2003:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_excel:2007:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_excel:2007:sp2:*:*:*:*:*:*
  • Microsoft/Office Excel Viewer2 versions
    cpe:2.3:a:microsoft:office_excel_viewer:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:office_excel_viewer:*:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_excel_viewer:2003:sp3:*:*:*:*:*:*
  • Microsoft/Office Sharepoint Server4 versions
    cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x32:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x32:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x64:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp2:x32:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp2:x64:*:*:*:*:*
  • Microsoft/Open Xml File Format Converter
    cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.