{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Microsoft Office Excel 2007 Service Pack 1 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office 2008 pour Mac.","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Excel Viewer 2003 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Excel Viewer ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Excel 2000 Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Compatibility Pack pour Word, Excel et Powerpoint 2007, Service Pack 1 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Excel Viewer 2003 Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Excel 2003 Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office 2004 pour Mac ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Excel 2002 Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans l'application bureautique\nMicrosoft Excel.\n\nCette vuln\u00e9rabilit\u00e9 est due \u00e0 la mauvaise interpr\u00e9tation de certains\nobjets des documents XLS, provoquant ainsi une corruption de m\u00e9moire.\nL'exploitation de cette vuln\u00e9rabilit\u00e9 permet \u00e0 une personne\nmalintentionn\u00e9e d'ex\u00e9cuter du code arbitraire via un document XLS\nsp\u00e9cialement construit.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2009-0238","url":"https://www.cve.org/CVERecord?id=CVE-2009-0238"},{"name":"CVE-2009-0100","url":"https://www.cve.org/CVERecord?id=CVE-2009-0100"}],"links":[{"title":"Alerte du CERTA num\u00e9ro CERTA-2009-ALE-002 du 25 f\u00e9vrier    2009 :","url":"http://www.certa.ssi.gouv.fr/site/CERTA-2009-ALE-002/index.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft MS09-009 du 14 avril 2009 :","url":"http://www.microsoft.com/technet/security/Bulletin/MS09-009.mspx"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft MS09-009 du 14 avril 2009 :","url":"http://www.microsoft.com/france/technet/security/Bulletin/MS09-009.mspx"}],"reference":"CERTA-2009-AVI-147","revisions":[{"description":"version initiale.","revision_date":"2009-04-15T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans <span class=\"textit\">Microsoft\nExcel</span>. L'exploitation de cette vuln\u00e9rabilit\u00e9 permet \u00e0 une\npersonne malveillante d'ex\u00e9cuter du code arbitraire \u00e0 distance par le\nbiais d'un document sp\u00e9cialement construit.\n","title":"Vuln\u00e9rabilit\u00e9 dans Microsoft Excel","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 MS09-009 du 14 avril 2009","url":null}]}