CVE-2011-3396

Name of the Vulnerable Software and Affected Versions Microsoft PowerPoint versions 2007 SP2 through 2010

Description The issue allows local users to gain privileges via a Trojan horse DLL in the current working directory. A remote code execution vulnerability exists in the way that Microsoft PowerPoint handles the loading of DLL files. An attacker who successfully exploited this vulnerability could take complete control of an affected system, then install programs, view, change, or delete data, or create new accounts with full user rights. Users with fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Recommendations For Microsoft PowerPoint 2007 SP2, update to a version that is not affected by this issue. For Microsoft PowerPoint 2010, update to a version that is not affected by this issue. As a temporary workaround, consider restricting the loading of DLL files from untrusted locations to minimize the risk of exploitation.