cvelistv5 - cve-2009-0220

CVE-2009-0220 (GCVE-0-2009-0220)

Vulnerability from cvelistv5

Published

2009-05-12 22:00

Modified

2024-08-07 04:24

Severity ?

CWE

Summary

Multiple stack-based buffer overflows in the PowerPoint 4.0 importer (PP4X32.DLL) in Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3 allow remote attackers to execute arbitrary code via crafted formatting data for paragraphs in a file that uses a PowerPoint 4.0 native file format, related to (1) an incorrect calculation from a record header, or (2) an interget that is used to specify the number of bytes to copy, aka "Legacy File Format Vulnerability."

References

URL

Tags

	http://www.securityfocus.com/bid/34833	vdb-entry, x_refsource_BID
	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5610	vdb-entry, signature, x_refsource_OVAL
	http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=790	third-party-advisory, x_refsource_IDEFENSE
	http://secunia.com/advisories/32428	third-party-advisory, x_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2009/1290	vdb-entry, x_refsource_VUPEN
	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-017	vendor-advisory, x_refsource_MS
	http://www.securitytracker.com/id?1022205	vdb-entry, x_refsource_SECTRACK
	http://www.us-cert.gov/cas/techalerts/TA09-132A.html	third-party-advisory, x_refsource_CERT
	http://osvdb.org/54386	vdb-entry, x_refsource_OSVDB

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T04:24:18.199Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "34833",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/34833"
          },
          {
            "name": "oval:org.mitre.oval:def:5610",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5610"
          },
          {
            "name": "20090512 Microsoft PowerPoint PPT 4.0 Importer Multiple Stack Buffer Overflow Vulnerabilities",
            "tags": [
              "third-party-advisory",
              "x_refsource_IDEFENSE",
              "x_transferred"
            ],
            "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=790"
          },
          {
            "name": "32428",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/32428"
          },
          {
            "name": "ADV-2009-1290",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2009/1290"
          },
          {
            "name": "MS09-017",
            "tags": [
              "vendor-advisory",
              "x_refsource_MS",
              "x_transferred"
            ],
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-017"
          },
          {
            "name": "1022205",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1022205"
          },
          {
            "name": "TA09-132A",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT",
              "x_transferred"
            ],
            "url": "http://www.us-cert.gov/cas/techalerts/TA09-132A.html"
          },
          {
            "name": "54386",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/54386"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2009-05-12T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple stack-based buffer overflows in the PowerPoint 4.0 importer (PP4X32.DLL) in Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3 allow remote attackers to execute arbitrary code via crafted formatting data for paragraphs in a file that uses a PowerPoint 4.0 native file format, related to (1) an incorrect calculation from a record header, or (2) an interget that is used to specify the number of bytes to copy, aka \"Legacy File Format Vulnerability.\""
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-12T19:57:01.000Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "34833",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/34833"
        },
        {
          "name": "oval:org.mitre.oval:def:5610",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5610"
        },
        {
          "name": "20090512 Microsoft PowerPoint PPT 4.0 Importer Multiple Stack Buffer Overflow Vulnerabilities",
          "tags": [
            "third-party-advisory",
            "x_refsource_IDEFENSE"
          ],
          "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=790"
        },
        {
          "name": "32428",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/32428"
        },
        {
          "name": "ADV-2009-1290",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2009/1290"
        },
        {
          "name": "MS09-017",
          "tags": [
            "vendor-advisory",
            "x_refsource_MS"
          ],
          "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-017"
        },
        {
          "name": "1022205",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1022205"
        },
        {
          "name": "TA09-132A",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT"
          ],
          "url": "http://www.us-cert.gov/cas/techalerts/TA09-132A.html"
        },
        {
          "name": "54386",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/54386"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@microsoft.com",
          "ID": "CVE-2009-0220",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple stack-based buffer overflows in the PowerPoint 4.0 importer (PP4X32.DLL) in Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3 allow remote attackers to execute arbitrary code via crafted formatting data for paragraphs in a file that uses a PowerPoint 4.0 native file format, related to (1) an incorrect calculation from a record header, or (2) an interget that is used to specify the number of bytes to copy, aka \"Legacy File Format Vulnerability.\""
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "34833",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/34833"
            },
            {
              "name": "oval:org.mitre.oval:def:5610",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5610"
            },
            {
              "name": "20090512 Microsoft PowerPoint PPT 4.0 Importer Multiple Stack Buffer Overflow Vulnerabilities",
              "refsource": "IDEFENSE",
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=790"
            },
            {
              "name": "32428",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/32428"
            },
            {
              "name": "ADV-2009-1290",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2009/1290"
            },
            {
              "name": "MS09-017",
              "refsource": "MS",
              "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-017"
            },
            {
              "name": "1022205",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1022205"
            },
            {
              "name": "TA09-132A",
              "refsource": "CERT",
              "url": "http://www.us-cert.gov/cas/techalerts/TA09-132A.html"
            },
            {
              "name": "54386",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/54386"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2009-0220",
    "datePublished": "2009-05-12T22:00:00.000Z",
    "dateReserved": "2009-01-20T00:00:00.000Z",
    "dateUpdated": "2024-08-07T04:24:18.199Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2009-AVI-185

Vulnerability from certfr_avis

Plusieurs vulnérabilités dans Microsoft Office PowerPoint permettant l'exécution de code arbitraire à distance ont été corrigées.

Description

De multiples vulnérabilités dans Microsoft Office PowerPoint permettent à une personne malintentionnée d'exécuter du code arbitraire à distance au moyen d'un fichier spécialement conçu.

L'une des vulnérabilités corrigées est exploitée sur l'Internet et a fait l'objet de l'alerte CERTA-2009-ALE-005.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation). Les mises à jour pour Mac et Microsoft Works seront disponnibles prochainement.

None

Impacted products

Vendor	Product	Description
Microsoft	Office	Pack de compatibilité Office pour les formats de fichier Word, Excel et PowerPoint 2007 Service Pack 1 ;
Microsoft	Office	Microsoft Office PowerPoint 2007 Service Pack 2 ;
Microsoft	N/A	PowerPoint Viewer 2007 Service Pack 2 ;
Microsoft	Office	Microsoft Office PowerPoint 2007 Service Pack 1 ;
Microsoft	N/A	PowerPoint Viewer 2003 ;
Microsoft	Office	Microsoft Office PowerPoint 2002 Service Pack 3 ;
Microsoft	Office	Microsoft Office PowerPoint 2003 Service Pack 3 ;
Microsoft	Office	Microsoft Office 2008 pour Mac ;
Microsoft	N/A	Microsoft Works 9.0.
Microsoft	N/A	Microsoft Works 8.5 ;
Microsoft	Office	Microsoft Office PowerPoint 2000 Service Pack 3 ;
Microsoft	N/A	PowerPoint Viewer 2007 Service Pack 1 ;
Microsoft	Office	Pack de compatibilité Office pour les formats de fichier Word, Excel et PowerPoint 2007 Service Pack 2 ;
Microsoft	N/A	Convertisseur de formats de fichier Open XML pour Mac ;
Microsoft	Office	Microsoft Office 2004 pour Mac ;

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft MS09-017 du 12 mai 2009	None	vendor-advisory
Bulletin de sécurité Microsoft MS08-017 du 12 mai 2009 :	-	other
Bulletin de sécurité Microsoft MS08-017 du 12 mai 2009 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Pack de compatibilit\u00e9 Office pour les formats de fichier Word, Excel et PowerPoint 2007 Service Pack 1 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office PowerPoint 2007 Service Pack 2 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "PowerPoint Viewer 2007 Service Pack 2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office PowerPoint 2007 Service Pack 1 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "PowerPoint Viewer 2003 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office PowerPoint 2002 Service Pack 3 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office PowerPoint 2003 Service Pack 3 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office 2008 pour Mac ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Works 9.0.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Works 8.5 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office PowerPoint 2000 Service Pack 3 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "PowerPoint Viewer 2007 Service Pack 1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Pack de compatibilit\u00e9 Office pour les formats de fichier Word, Excel et PowerPoint 2007 Service Pack 2 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Convertisseur de formats de fichier Open XML pour Mac ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office 2004 pour Mac ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s dans Microsoft Office PowerPoint permettent\n\u00e0 une personne malintentionn\u00e9e d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance\nau moyen d\u0027un fichier sp\u00e9cialement con\u00e7u.\n\nL\u0027une des vuln\u00e9rabilit\u00e9s corrig\u00e9es est exploit\u00e9e sur l\u0027Internet et a\nfait l\u0027objet de l\u0027alerte CERTA-2009-ALE-005.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation). Les mises \u00e0 jour pour Mac et\nMicrosoft Works seront disponnibles prochainement.\n",
  "cves": [
    {
      "name": "CVE-2009-0227",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0227"
    },
    {
      "name": "CVE-2009-0225",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0225"
    },
    {
      "name": "CVE-2009-1128",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-1128"
    },
    {
      "name": "CVE-2009-0226",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0226"
    },
    {
      "name": "CVE-2009-0220",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0220"
    },
    {
      "name": "CVE-2009-1129",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-1129"
    },
    {
      "name": "CVE-2009-1130",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-1130"
    },
    {
      "name": "CVE-2009-0224",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0224"
    },
    {
      "name": "CVE-2009-0556",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0556"
    },
    {
      "name": "CVE-2009-1137",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-1137"
    },
    {
      "name": "CVE-2009-0222",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0222"
    },
    {
      "name": "CVE-2009-0221",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0221"
    },
    {
      "name": "CVE-2009-1131",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-1131"
    }
  ],
  "initial_release_date": "2009-05-13T00:00:00",
  "last_revision_date": "2009-05-13T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS08-017 du 12 mai 2009 :",
      "url": "http://www.microsoft.com/technet/security/Bulletin/MS08-017.mspx"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS08-017 du 12 mai 2009 :",
      "url": "http://www.microsoft.com/france/technet/security/Bulletin/MS08-017.mspx"
    }
  ],
  "reference": "CERTA-2009-AVI-185",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2009-05-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s dans \u003cspan class=\"textit\"\u003eMicrosoft Office\nPowerPoint\u003c/span\u003e permettant l\u0027ex\u00e9cution de code arbitraire \u00e0 distance\nont \u00e9t\u00e9 corrig\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft PowerPoint",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS09-017 du 12 mai 2009",
      "url": null
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2009-0220 (GCVE-0-2009-0220)

Vulnerability from cvelistv5

CERTA-2009-AVI-185

Vulnerability from certfr_avis

Description

Solution

Tags

Sightings

Nomenclature