Detections
Analytics

MS09-043: Vulnerabilities in Microsoft Office Web Components Control Could Allow Remote Code Execution (973472)

critical Nessus Plugin ID 39783

Language:

Synopsis

The remote Windows host contains an ActiveX control that could allow remote code execution.

Description

The remote Windows host includes Microsoft Office Web Components, a collection of Component Object Model (COM) controls for publishing and viewing spreadsheets, charts, and databases on the web.

A privately reported vulnerability in Microsoft Office Web Components reportedly can be abused to corrupt the system state and allow execution of arbitrary code.

Solution

Microsoft has released a set of patches for Office XP and 2003, as well as for Microsoft ISA server.

See Also

https://www.nessus.org/u?510786ed

https://www.nessus.org/u?682ca4b4

Plugin Details

Severity: Critical

ID: 39783

File Name: smb_kb_973472.nasl

Version: 1.31

Type: local

Agent: windows

Published: 7/14/2009

Updated: 10/5/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.6

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 8.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2009-1136

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: SMB/WindowsVersion, SMB/Missing/MS09-043

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 8/11/2009

Vulnerability Publication Date: 7/13/2009

Exploitable With

CANVAS (D2ExploitPack)

Core Impact

Metasploit (Microsoft OWC Spreadsheet msDataSourceObject Memory Corruption)

Reference Information

CVE: CVE-2009-1136

BID: 35642

CWE: 94

IAVA: 2009-A-0069-S

MSFT: MS09-043

MSKB: 973472

Secunia: 35800