CVE-2022-26511

Name of the Vulnerable Software and Affected Versions WPS Presentation version 11.8.0.5745

Description The issue is related to the insecure loading of the d3dx9 41.dll library when opening .pps files, specifically due to 'current directory type' DLL loading. This can allow an attacker to elevate privileges and execute arbitrary code.

Recommendations For WPS Presentation version 11.8.0.5745, consider restricting the loading of the d3dx9 41.dll library to prevent exploitation until a patch is available. As a temporary workaround, avoid opening .pps files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.