CVE-2009-2528

CVE-2009-2528 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

GDI+ in Microsoft Office XP SP3 does not properly handle malformed objects in Office Art Property Tables, which allows remote attackers to execute arbitrary code via a crafted Office document that triggers memory corruption, aka "Memory Corruption Vulnerability."

Learn more about our Cis Benchmark Audit For Microsoft Office.