CVE-2009-3129

HIGH KEV

Microsoft Excel - Out-of-Bounds Write

Title source: rule

Description

Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a spreadsheet with a FEATHEADER record containing an invalid cbHdrData size element that affects a pointer offset, aka "Excel Featheader Record Memory Corruption Vulnerability."

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/16625
metasploit WORKING POC GOOD
by Sean Larsson, jduck · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ms09_067_excel_featheader.rb
exploitdb WORKING POC
by anonymous · pythonlocalwindows
https://www.exploit-db.com/exploits/14706

References (11)

Scores

CVSS v3 7.8
EPSS 0.9165
EPSS Percentile 99.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitation Intel

CISA KEV 2022-03-03
VulnCheck KEV 2012-01-01
InTheWild.io 2022-03-03
ENISA EUVD EUVD-2009-3112

Classification

CWE
CWE-787
Status draft

Affected Products (10)

microsoft/excel
microsoft/excel
microsoft/excel
microsoft/excel
microsoft/excel_viewer
microsoft/excel_viewer
microsoft/excel_viewer
microsoft/office
microsoft/office
microsoft/open_xml_file_format_converter

Timeline

Published Nov 11, 2009
KEV Added Mar 03, 2022
Tracked Since Feb 18, 2026