Microsoft Office PowerPoint Multiple Vulnerabilities( 13 May 2009 )
RISK: Medium Risk
A remote code execution vulnerability exists in the way that Microsoft Office PowerPoint handles specially crafted PowerPoint files. An attacker could exploit the vulnerability by creating a specially crafted PowerPoint file that could be included as an e-mail attachment, or hosted on a specially crafted or compromised Web site.
1. Legacy File Format Vulnerability
2. Integer Overflow Vulnerability
3. Legacy File Format Vulnerability
4. Legacy File Format Vulnerability
5. Memory Corruption Vulnerability
6. PP7 Memory Corruption Vulnerability
7. Legacy File Format Vulnerability
8. Legacy File Format Vulnerability
9. Memory Corruption Vulnerability
10. PP7 Memory Corruption Vulnerability
11. PP7 Memory Corruption Vulnerability
12. Heap Corruption Vulnerability
13. Data Out of Bounds Vulnerability
14. Legacy File Format Vulnerability
Impact
- Remote Code Execution
System / Technologies affected
- Microsoft Office 2000
- Microsoft Office XP
- Microsoft Office 2003
- 2007 Microsoft Office System
- Microsoft Office PowerPoint 2000
- Microsoft Office PowerPoint 2002
- Microsoft Office PowerPoint 2003
- Microsoft Office PowerPoint 2007
- Microsoft Office 2004 for Mac
- Microsoft Office 2008 for Mac
- Open XML File Format Converter for Mac
- PowerPoint Viewer 2003
- PowerPoint Viewer 2007
- Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats
- Microsoft Works 8.5
- Microsoft Works 9.0
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
Download locations for this patch
- Microsoft Office 2000 Service Pack 3
- Microsoft Office PowerPoint 2000 Service Pack 3 - Microsoft Office XP Service Pack 3
- Microsoft Office PowerPoint 2002 Service Pack 3 - Microsoft Office 2003 Service Pack 3
- Microsoft Office PowerPoint 2003 Service Pack 3 - 2007 Microsoft Office System Service Pack 1
- Microsoft Office PowerPoint 2007 Service Pack 1 - 2007 Microsoft Office System Service Pack 2
- Microsoft Office PowerPoint 2007 Service Pack 2 - Microsoft Office 2004 for Mac
- Microsoft Office 2008 for Mac
- Open XML File Format Converter for Mac
- PowerPoint Viewer 2003
- PowerPoint Viewer 2007 Service Pack 1 and PowerPoint Viewer 2007 Service Pack 2
- Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 1
- Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 2
- Microsoft Works 8.5
- Microsoft Works 9.0
Vulnerability Identifier
- CVE-2009-0220
- CVE-2009-0221
- CVE-2009-0222
- CVE-2009-0223
- CVE-2009-0224
- CVE-2009-0225
- CVE-2009-0226
- CVE-2009-0227
- CVE-2009-0556
- CVE-2009-1128
- CVE-2009-1129
- CVE-2009-1130
- CVE-2009-1131
- CVE-2009-1137
Source
Related Link
Share with