CVE-2009-1134
Microsoft Office Excel QSIR Record Pointer Corruption Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Excel in 2007 Microsoft Office System SP1 and SP2; Microsoft Office Excel Viewer; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allow remote attackers to execute arbitrary code via a BIFF file with a malformed Qsir (0x806) record object, aka "Record Pointer Corruption Vulnerability."
Excel en 2007 Office System SP1 y SP2 de Microsoft; Office Excel Viewer de Microsoft; y Office Compatibility Pack para formatos de archivo de Word, Excel y PowerPoint 2007 SP1 y SP2 de Microsoft, permite a los atacantes remotos ejecutar código arbitrario por medio de un archivo BIFF con un objeto de registro Qsir (0x806) malformado, también se conoce como "Record Pointer Corruption Vulnerability".
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. Exploitation requires user interaction in that a victim must open a malicious XLS file.
The specific flaw exists within the parsing of the BIFF file format used by Microsoft Excel. When Excel 2007 encounters a malformed Qsir record (0x806) user data is improperly handled leading to potential code execution. Successful exploitation of this can lead to a remote compromise of the affected system running under the credentials of the currently logged in user.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2009-03-25 CVE Reserved
- 2009-06-10 CVE Published
- 2024-08-07 CVE Updated
- 2024-11-13 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (9)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/54958 | Vdb Entry | |
| http://www.securityfocus.com/archive/1/504213/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/35246 | Vdb Entry | |
| http://www.securitytracker.com/id?1022351 | Vdb Entry | |
| http://www.us-cert.gov/cas/techalerts/TA09-160A.html | Third Party Advisory | |
| http://www.vupen.com/english/advisories/2009/1540 | Vdb Entry | |
| http://www.zerodayinitiative.com/advisories/ZDI-09-040 | X_refsource_misc |
|
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5922 | Signature |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-021 | 2018-10-12 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Microsoft Search vendor "Microsoft" | Office Search vendor "Microsoft" for product "Office" | 2004 Search vendor "Microsoft" for product "Office" and version "2004" | mac |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Search vendor "Microsoft" for product "Office" | 2008 Search vendor "Microsoft" for product "Office" and version "2008" | mac |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Search vendor "Microsoft" for product "Office" | xp Search vendor "Microsoft" for product "Office" and version "xp" | sp3 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Compatibility Pack For Word Excel Ppt 2007 Search vendor "Microsoft" for product "Office Compatibility Pack For Word Excel Ppt 2007" | * | sp1 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Compatibility Pack For Word Excel Ppt 2007 Search vendor "Microsoft" for product "Office Compatibility Pack For Word Excel Ppt 2007" | * | sp2 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Excel Search vendor "Microsoft" for product "Office Excel" | 2000 Search vendor "Microsoft" for product "Office Excel" and version "2000" | sp3 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Excel Search vendor "Microsoft" for product "Office Excel" | 2003 Search vendor "Microsoft" for product "Office Excel" and version "2003" | sp3 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Excel Search vendor "Microsoft" for product "Office Excel" | 2007 Search vendor "Microsoft" for product "Office Excel" and version "2007" | sp1 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Excel Search vendor "Microsoft" for product "Office Excel" | 2007 Search vendor "Microsoft" for product "Office Excel" and version "2007" | sp2 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Excel Viewer Search vendor "Microsoft" for product "Office Excel Viewer" | * | - |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Excel Viewer Search vendor "Microsoft" for product "Office Excel Viewer" | 2003 Search vendor "Microsoft" for product "Office Excel Viewer" and version "2003" | sp3 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Sharepoint Server Search vendor "Microsoft" for product "Office Sharepoint Server" | 2007 Search vendor "Microsoft" for product "Office Sharepoint Server" and version "2007" | sp1, x32 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Sharepoint Server Search vendor "Microsoft" for product "Office Sharepoint Server" | 2007 Search vendor "Microsoft" for product "Office Sharepoint Server" and version "2007" | sp1, x64 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Sharepoint Server Search vendor "Microsoft" for product "Office Sharepoint Server" | 2007 Search vendor "Microsoft" for product "Office Sharepoint Server" and version "2007" | sp2, x32 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Office Sharepoint Server Search vendor "Microsoft" for product "Office Sharepoint Server" | 2007 Search vendor "Microsoft" for product "Office Sharepoint Server" and version "2007" | sp2, x64 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Open Xml File Format Converter Search vendor "Microsoft" for product "Open Xml File Format Converter" | * | mac |
Affected
| ||||||