Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2009-2528

GDI+ in Microsoft Office XP SP3 does not properly handle malformed objects in Office Art Property Tables, which allows remote attackers to execute arbitrary code via a crafted Office document that triggers memory corruption, aka "Memory Corruption Vulnerability."

  • Published: Oct 14, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-2528
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 9.3
  • AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
microsoft / windows_2003_server - -
microsoft / windows_xp - -
microsoft / windows_vista - -
microsoft / windows_server_2008 - -
microsoft / .net_framework 1.1-sp1 1.1-sp1.x
microsoft / .net_framework 2.0-sp2 2.0-sp2.x
microsoft / .net_framework 2.0-sp1 2.0-sp1.x
microsoft / internet_explorer 6-sp1 6-sp1.x
microsoft / report_viewer 2008-sp1 2008-sp1.x
microsoft / sql_server_reporting_services 2000-sp2 2000-sp2.x
microsoft / sql_server 2005-sp2 2005-sp2.x
microsoft / sql_server 2005-sp3 2005-sp3.x
microsoft / report_viewer 2008 2008.x
microsoft / report_viewer 2005-sp1 2005-sp1.x
microsoft / expression_web - -
microsoft / project 2002-sp1 2002-sp1.x
microsoft / office_powerpoint_viewer 2007-sp1 2007-sp1.x
microsoft / office_excel_viewer - -
microsoft / office_word_viewer - -
microsoft / office_compatibility_pack 2007-sp2 2007-sp2.x
microsoft / office 2007-sp2 2007-sp2.x
microsoft / excel_viewer 2003 2003.x
microsoft / expression_web 2 2.x
microsoft / visio 2002-sp2 2002-sp2.x
microsoft / office_compatibility_pack 2007-sp1 2007-sp1.x
microsoft / excel_viewer 2003-sp3 2003-sp3.x
microsoft / office_powerpoint_viewer - -
microsoft / works 8.5 8.5.x
microsoft / word_viewer 2003 2003.x
microsoft / word_viewer 2003-sp3 2003-sp3.x
microsoft / office 2007-sp1 2007-sp1.x
microsoft / office_groove 2007 2007.x
microsoft / office_groove 2007-sp1 2007-sp1.x
microsoft / office 2003-sp3 2003-sp3.x
microsoft / office_powerpoint_viewer 2007-sp2 2007-sp2.x
microsoft / office xp xp.x
microsoft / visual_studio_.net 2003-sp1 2003-sp1.x
microsoft / visual_studio_.net 2005-sp1 2005-sp1.x
microsoft / visual_studio 2008-sp1 2008-sp1.x
microsoft / platform_sdk - -
microsoft / visual_studio 2008 2008.x
microsoft / forefront_client_security 1.0 1.0.x
microsoft / visual_foxpro 8.0-sp1 8.0-sp1.x
microsoft / visual_foxpro 9.0-sp2 9.0-sp2.x