GDI+ in Microsoft Office XP SP3 does not properly handle malformed objects in Office Art Property Tables, which allows remote attackers to execute arbitrary code via a crafted Office document that triggers memory corruption, aka "Memory Corruption Vulnerability."
2009-10-14T10:30:01.703
2025-04-09T00:30:58.490
Deferred
CVSSv2: 9.3 (HIGH)
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.6
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | microsoft | windows_2003_server | * | Yes |
| Operating System | microsoft | windows_2003_server | * | Yes |
| Operating System | microsoft | windows_2003_server | * | Yes |
| Operating System | microsoft | windows_server_2008 | * | Yes |
| Operating System | microsoft | windows_server_2008 | * | Yes |
| Operating System | microsoft | windows_server_2008 | * | Yes |
| Operating System | microsoft | windows_vista | * | Yes |
| Operating System | microsoft | windows_vista | * | Yes |
| Operating System | microsoft | windows_vista | * | Yes |
| Operating System | microsoft | windows_xp | * | Yes |
| Operating System | microsoft | windows_xp | * | Yes |
| Operating System | microsoft | windows_xp | * | Yes |
| Operating System | microsoft | windows_2000 | * | No |
| Application | microsoft | .net_framework | 1.1 | Yes |
| Application | microsoft | .net_framework | 2.0 | Yes |
| Application | microsoft | .net_framework | 2.0 | Yes |
| Application | microsoft | internet_explorer | 6 | Yes |
| Application | microsoft | report_viewer | 2005 | Yes |
| Application | microsoft | report_viewer | 2008 | Yes |
| Application | microsoft | report_viewer | 2008 | Yes |
| Application | microsoft | sql_server | 2005 | Yes |
| Application | microsoft | sql_server | 2005 | Yes |
| Application | microsoft | sql_server | 2005 | Yes |
| Application | microsoft | sql_server | 2005 | Yes |
| Application | microsoft | sql_server | 2005 | Yes |
| Application | microsoft | sql_server | 2005 | Yes |
| Application | microsoft | sql_server_reporting_services | 2000 | Yes |
| Application | microsoft | excel_viewer | 2003 | Yes |
| Application | microsoft | excel_viewer | 2003 | Yes |
| Application | microsoft | expression_web | * | Yes |
| Application | microsoft | expression_web | 2 | Yes |
| Application | microsoft | office | 2003 | Yes |
| Application | microsoft | office | 2007 | Yes |
| Application | microsoft | office | 2007 | Yes |
| Application | microsoft | office | xp | Yes |
| Application | microsoft | office_compatibility_pack | 2007 | Yes |
| Application | microsoft | office_compatibility_pack | 2007 | Yes |
| Application | microsoft | office_excel_viewer | * | Yes |
| Application | microsoft | office_groove | 2007 | Yes |
| Application | microsoft | office_groove | 2007 | Yes |
| Application | microsoft | office_powerpoint_viewer | * | Yes |
| Application | microsoft | office_powerpoint_viewer | 2007 | Yes |
| Application | microsoft | office_powerpoint_viewer | 2007 | Yes |
| Application | microsoft | office_word_viewer | * | Yes |
| Application | microsoft | project | 2002 | Yes |
| Application | microsoft | visio | 2002 | Yes |
| Application | microsoft | word_viewer | 2003 | Yes |
| Application | microsoft | word_viewer | 2003 | Yes |
| Application | microsoft | works | 8.5 | Yes |
| Application | microsoft | platform_sdk | * | Yes |
| Application | microsoft | report_viewer | 2005 | Yes |
| Application | microsoft | report_viewer | 2008 | Yes |
| Application | microsoft | report_viewer | 2008 | Yes |
| Application | microsoft | visual_studio | 2008 | Yes |
| Application | microsoft | visual_studio | 2008 | Yes |
| Application | microsoft | visual_studio_.net | 2003 | Yes |
| Application | microsoft | visual_studio_.net | 2005 | Yes |
| Application | microsoft | forefront_client_security | 1.0 | Yes |
| Application | microsoft | visual_foxpro | 8.0 | Yes |
| Application | microsoft | visual_foxpro | 9.0 | Yes |
| Operating System | microsoft | windows_2000 | * | No |