CVE-2009-1515

EPSS 4.2%

Published: 5/4/2009Modified: 4/28/2026

Also known as:DEBIAN-CVE-2009-1515

Description

Heap-based buffer overflow in the cdf_read_sat function in src/cdf.c in Christos Zoulas file 5.00 allows user-assisted remote attackers to execute arbitrary code via a crafted compound document file, as demonstrated by a .msi, .doc, or .mpp file. NOTE: some of these details are obtained from third party information.

Affected packages (1)

Debian/filefrom 0, < 5.02-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-1515