QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2009-0102

Back to search

CVE-2009-0102

Published: Dec 9, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Microsoft Project 2000 SR1 and 2002 SP1, and Office Project 2003 SP3, does not properly handle memory allocation for Project files, which allows remote attackers to execute arbitrary code via a malformed file, aka "Project Memory Validation Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

oval:org.mitre.oval:def:6298
vdb-entry
signature
x_refsource_OVAL
TA09-342A
third-party-advisory
x_refsource_CERT
MS09-074
vendor-advisory
x_refsource_MS

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now