CVE-2009-1131

Name of the Vulnerable Software and Affected Versions Microsoft Office PowerPoint 2000 SP3

Description The issue is related to the handling of specially crafted PowerPoint files, which can trigger memory corruption due to a large amount of data associated with unspecified atoms. This can lead to remote code execution. An attacker could exploit this by creating a specially crafted PowerPoint file that could be included as an e-mail attachment or hosted on a specially crafted or compromised Web site.

Recommendations For Microsoft Office PowerPoint 2000 SP3, consider avoiding the use of unspecified atoms in PowerPoint files until a patch is available. As a temporary workaround, restrict access to specially crafted PowerPoint files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.