Infesting you with Virus News
 

Vulnerabilities

Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3 memory... (PC1-2009-1292)

Overview

Vulnerability chart

Risk level
  • Low
  • Medium
  • High
  • Extreme
  • Severe
Warning: security vulnerability level = severe
24 vulnerabilities(-y) found between 15 February, 2006 and 10 February, 2010.
Microsoft PowerPoint being a presentation program which is developed by... more
See also: Powerpoint, Microsoft PowerPoint 2000, Microsoft Office PowerPoint
124 files found: mplayer.exe, powerpnt.exe, autoconv.exe, VSETUP.EXE, DECOMP.EXE, acmsetup.exe, graflink.exe, _mssetup.exe, preview.exe, msinfo.exe, graph5.exe, pptview.exe, orgchart.exe, ccard100.exe, artgalry.exe... more
Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3 contain a vulnerability.
Unknown vulnerability
Yes, patch
is available
Patch is easy
to implement

References to Advisories, Solutions, and Tools

Description:

By using this type of vulnerability, remote attackers are enabled to execute arbitrary code through crafted sound data in a file using a PowerPoint 95 native file format. It results in memory corruption, aka "PP7 Memory Corruption Vulnerability," not similar to vulnerability CVE-2009-1128.

Impact:

With the help of this vulnerability, remote attackers obtains administrator access. Also, they are permitted to full confidentiality, integrity, and availability violation. Moreover, this vulnerability enables to reveal information without any authorization. Finally, it lets to break up a service.

Solution:

We recommend users to check for the latest versions and updates of the software product and upgrade their systems.

References:http://www.microsoft.com/technet/security/Bulletin/MS09-017.mspx

Impact

CVSS Severity

CVSS Version 2 Metrics:

CVSS v2 Base Score:9.3 (HIGH)Access Vector:N/A
Impact Subscore: 10.0Access Complexity: Medium
Exploitability Subscore: 8.6Authentication: Not required to exploit
Impact Type:Provides administrator access, Allows complete confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service

Say something interesting!

Name:
Email:
Website:
Comment:
Please type 5-digit security code below:
Captcha image for spam protection

Featured Videos

Registry Tutorials
From: PC1News Videos
Added: November 11, 2008
more videos

Latest Comments

Generic Dropper.p
July 31, 2010
http://arthriti .. me-breasts.htmlprime breasts, jnin, http://rentacar .. ssing-tube.htmlpissing tube,... more..
Generic Dropper.p
July 31, 2010
http://usa-batt .. er-preview.htmlcorbin fisher preview, :PP, http://sahanav. .. e-magazine.htmlelle... more..
Generic Dropper.p
July 31, 2010
http://mj-shawb .. -incubator.htmlegg incubator, 8-O, http://hemetmar .. /rod-laver.htmlrod laver,... more..
more comments..
rss
Home | Files | Programs | Latest Comments | About us | Privacy Policy | Contributors | Write For Us | Contact Us
© 2008 - 2010 pc1news.com - All rights reserved.
Home  Tips  Downloads Videos Virus List Vulnerabilities
Home > Vulnerabilities > pc1-2009-1292