What is the severity of CVE-2009-0561?

CVE-2009-0561 has a CVSS v3 score of 0, which is classified as Low severity.

Is there an exploit available for CVE-2009-0561?

No known public exploits are currently available for CVE-2009-0561.

Is there a patch available for CVE-2009-0561?

Yes, patches are available for CVE-2009-0561. Check the vendor advisories for update instructions.

CVE-2009-0561 - CVE Details, Severity, and Analysis

CVE-2009-0561 - CVE Details, Severity, and Analysis | Strobes VI

Severity Scores

CVSS v30.0

CVSS v29.3

Priority Score0.0

EPSS Score66.0

None

Exploitation LikelihoodCritical

66.00%EPSS

Very high probability of exploitation in the next 30 days

Immediate patching required

66.00%

EPSS

0.0

CVSS

Exploit

Yes

Patch

Medium Priority

high EPSS

EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.

Description

Integer overflow in Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Office System SP1 and SP2; Open XML File Format Converter for Mac; Microsoft Office Excel Viewer 2003 SP3; Microsoft Office Excel Viewer; Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Microsoft Office SharePoint Server 2007 SP1 and SP2 allows remote attackers to execute arbitrary code via an Excel file with a Shared String Table (SST) record with a numeric field that specifies an invalid number of unique strings, which triggers a heap-based buffer overflow, aka "Record Integer Overflow Vulnerability."

CVSS v3 Breakdown

Attack Vector:-

Attack Complexity:-

Privileges Required:-

User Interaction:-

Scope:-

Confidentiality:-

Integrity:-

Availability:-

Patch References

[email protected][email protected]Zeroday CZ

Trend Analysis

Neutral

Vulnerable Products

Vendor	Product
Microsoft	Office Compatibility Pack For Word Excel Ppt 2007