PT-2009-3692 · Microsoft · Office Powerpoint

Marsu Pilami

Published

2009-05-12

Updated

2018-10-12

CVE-2009-1128

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Office PowerPoint versions 2000 SP3 through 2003 SP3

Description A remote code execution issue exists in the way Microsoft Office PowerPoint handles specially crafted files, potentially leading to memory corruption. This can be exploited by an attacker creating a specially crafted PowerPoint file, which could be sent as an email attachment or hosted on a compromised website.

Recommendations For Microsoft Office PowerPoint versions 2000 SP3 through 2003 SP3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2009-1128

Affected Products

Office Powerpoint

PT-2009-3692 · Microsoft · Office Powerpoint

CVE-2009-1128

Weakness Enumeration

Related Identifiers

Affected Products

References · 10