PT-2009-3692 · Microsoft · Office Powerpoint

Marsu Pilami

Publicado

2009-05-12

Atualizado

2018-10-12

CVE-2009-1128

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Office PowerPoint versions 2000 SP3 through 2003 SP3

Description A remote code execution issue exists in the way Microsoft Office PowerPoint handles specially crafted files, potentially leading to memory corruption. This can be exploited by an attacker creating a specially crafted PowerPoint file, which could be sent as an email attachment or hosted on a compromised website.

Recommendations For Microsoft Office PowerPoint versions 2000 SP3 through 2003 SP3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94

Identificadores relacionados

CVE-2009-1128

Produtos afetados

Office Powerpoint

PT-2009-3692 · Microsoft · Office Powerpoint

CVE-2009-1128

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 10