{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Microsoft Office 2003 Web Components Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office XP Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office 2003 Web Components Service Pack 1 pour Microsoft Office System 2007 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office XP Web Components Service Pack ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Internet Security and Acceleration Server 2004 Enterprise Edition Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft BizTalk Server 2002 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Internet Security and Acceleration Server 2006 Standard Edition Service Pack 1 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Internet Security and Acceleration Server 2006 Enterprise Edition Service Pack 1 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office 2003 Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Small Business Accounting 2006.","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office 2000 Web Components Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Internet Security and Acceleration Server 2004 Standard Edition Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio .NET 2003 Service Pack 1 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans Microsoft Office\nWeb Components. Il s'agit d'un ensemble de contr\u00f4les COM (Component\nObject Model) utilis\u00e9s pour la publication de feuilles de calcul, de\ngraphiques et de bases de donn\u00e9es sur le Web ainsi que pour l'affichage\nde composants publi\u00e9s sur le Web.\n\nUne personne distante pourrait ainsi chercher \u00e0 exploiter ces\nvuln\u00e9rabilit\u00e9s par le biais d'une page Web sp\u00e9cialement con\u00e7ue.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 Microsoft MS09-043 pour l'obtention\ndes correctifs (cf. section Documentation).\n","cves":[{"name":"CVE-2009-1534","url":"https://www.cve.org/CVERecord?id=CVE-2009-1534"},{"name":"CVE-2009-2496","url":"https://www.cve.org/CVERecord?id=CVE-2009-2496"},{"name":"CVE-2009-0562","url":"https://www.cve.org/CVERecord?id=CVE-2009-0562"},{"name":"CVE-2009-1136","url":"https://www.cve.org/CVERecord?id=CVE-2009-1136"}],"links":[],"reference":"CERTA-2009-AVI-331","revisions":[{"description":"version initiale.","revision_date":"2009-08-12T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans Microsoft Office\nWeb Components. Elles peuvent \u00eatre exploit\u00e9es par une personne distante\nafin d'ex\u00e9cuter du code arbitraire sur le syst\u00e8me.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Office Web Components","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft MS09-043 du 11 ao\u00fbt 2009","url":"http://www.microsoft.com/technet/security/Bulletin/MS09-043.mspx"}]}