Dejun Meng

**Name of the Vulnerable Software and Affected Versions** Microsoft Office versions 2000, XP, 2003, 2004 for Mac, and v.X for Mac **Description** The issue allows remote user-assisted attackers to execute arbitrary code via a crafted string that triggers memory corruption when Office parses a file with a malformed string. An attacker could exploit this vulnerability, but details about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited are not provided. **Recommendations** For Microsoft Office versions 2000, XP, 2003, 2004 for Mac, and v.X for Mac, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft PowerPoint (affected versions not specified) **Description** A remote code execution issue exists due to the improper parsing of a malformed Data record in a file. This could allow an attacker to exploit the issue when the file is opened in PowerPoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PowerPoint (affected versions not specified) **Description** A remote code execution issue exists and could be exploited when a file containing a malformed shape container is parsed. Such a file might be included in an e-mail attachment or hosted on a malicious web site. An attacker could exploit this by constructing a specially crafted PowerPoint file that could allow remote code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: Microsoft Office versions 2000 SP3, Office XP SP3, Office 2003 SP1 and SP2 Microsoft Office for Mac versions 2004, X Description: The issue allows user-assisted attackers to execute arbitrary code via a PowerPoint document with a malformed record, which triggers memory corruption. It is a remote code execution vulnerability that can be exploited by constructing a specially crafted PowerPoint file. Recommendations: For Microsoft Office 2000 SP3, update to a version that is not affected by this issue. For Microsoft Office XP SP3, update to a version that is not affected by this issue. For Microsoft Office 2003 SP1 and SP2, update to a version that is not affected by this issue. For Microsoft Office 2004 for Mac, update to a version that is not affected by this issue. For Microsoft Office X for Mac, update to a version that is not affected by this issue.

**Name of the Vulnerable Software and Affected Versions** Apple Quicktime versions prior to 7.0.4 **Description** The issue allows remote attackers to execute arbitrary code via crafted TGA image files, due to a buffer overflow. **Recommendations** For versions prior to 7.0.4, update to version 7.0.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Quicktime versions prior to 7.0.4 **Description** The issue is related to an integer overflow that can be triggered by a specially crafted TIFF image file. This file would have modified image height and width, specifically the `ImageWidth` tag. The result of this overflow could allow remote attackers to execute arbitrary code. **Recommendations** For versions prior to 7.0.4, update to version 7.0.4 or later to resolve the issue.