New Search

Project Memory Validation Vulnerability

oval:org.mitre.oval:def:6298

Microsoft Project 2000 SR1 and 2002 SP1 and Office Project 2003 SP3 does not properly handle memory allocation for Project files which allows remote attackers to execute arbitrary code via a malformed file aka "Project Memory Validation Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2008
  • Microsoft Windows Vista
  • Microsoft Windows 2000
  • Microsoft Windows 7
  • Microsoft Windows Server 2003
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2009-0102
Product(s):
  • Microsoft Project 2002
  • Microsoft Project 2000
  • Microsoft Project 2003