VYPR
Unrated severityNVD Advisory· Published Jun 10, 2009· Updated Jun 16, 2026

CVE-2009-0561

CVE-2009-0561

Description

Integer overflow in Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Office System SP1 and SP2; Open XML File Format Converter for Mac; Microsoft Office Excel Viewer 2003 SP3; Microsoft Office Excel Viewer; Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Microsoft Office SharePoint Server 2007 SP1 and SP2 allows remote attackers to execute arbitrary code via an Excel file with a Shared String Table (SST) record with a numeric field that specifies an invalid number of unique strings, which triggers a heap-based buffer overflow, aka "Record Integer Overflow Vulnerability."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19
  • Microsoft/Office4 versions
    cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
    • (no CPE)range: 2000 SP3, XP SP3, 2003 SP3, 2007 SP1, 2007 SP2, 2004 for Mac, 2008 for Mac
  • cpe:2.3:a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:sp2:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:office_excel:2000:sp3:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:office_excel:2000:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_excel:2003:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_excel:2007:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_excel:2007:sp2:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:office_excel_viewer:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:office_excel_viewer:*:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_excel_viewer:2003:sp3:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x32:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x32:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x64:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp2:x32:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp2:x64:*:*:*:*:*
  • cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:*
    • (no CPE)range: for Mac
  • Microsoft/Excelllm-fuzzy
    Range: 2000 SP3, XP SP3, 2003 SP3, 2007 SP1, 2007 SP2, 2004 for Mac, 2008 for Mac

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.