Published: 12/08/2009 Updated: 12/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Heap-based buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Acceleration (ISA) Server 2004 SP3 and 2006 SP1, and Office Small Business Accounting 2006 allows remote malicious users to execute arbitrary code via unspecified parameters to unknown methods, aka "Office Web Components Heap Corruption Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft office web components xp
microsoft office web components 2003
microsoft visual studio .net 2003
microsoft office -
microsoft internet security and acceleration server 2004
microsoft office 2003
microsoft office xp
microsoft office web components 2000
microsoft internet security and acceleration server 2006
microsoft biztalk server 2002

Monthly Malware Statistics: October 2009

Securelist • Eugene Aseev • 05 Nov 2009

Kaspersky Lab presents its monthly malware statistics for October. From this month onwards, the data used is gathered from all products which use the Kaspersky Security Network (KSN), i.e. products from both the 2009 and 2010 lines. As a result, the Top Twenties have changed somewhat, and the figures in both ratings this month are significantly higher, due to an increased numbers of users participating in KSN. The first Top Twenty lists malicious programs, adware and potentially unwanted program...

CVE-2009-2496

Vulnerability Summary

Recent Articles

References

Vulmon Search

About

Products

Connect