CVE-2011-1269

Name of the Vulnerable Software and Affected Versions Microsoft PowerPoint versions 2002 SP3, 2003 SP3, 2007 SP2 Office versions 2004, 2008 for Mac Open XML File Format Converter for Mac Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats version SP2

Description A remote code execution issue exists due to improper handling of memory during file parsing, allowing attackers to execute arbitrary code via a crafted PowerPoint document. This could enable an attacker to take complete control of an affected system, install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft PowerPoint versions 2002 SP3, 2003 SP3, 2007 SP2, update to a version that properly handles memory during file parsing to prevent remote code execution. For Office versions 2004, 2008 for Mac, update to a version that properly handles memory during file parsing to prevent remote code execution. For Open XML File Format Converter for Mac, update to a version that properly handles memory during file parsing to prevent remote code execution. For Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats version SP2, update to a version that properly handles memory during file parsing to prevent remote code execution.