Microsoft PowerPoint Heap Corruption Vulnerability
Publish date: 21 de julio de 2015
Gravedad: Crítico
Identificadores de CVE : CVE-2009-1130,MS09-017
Fecha recomendada: 21 de julio de 2015
Descripción
Heap-based buffer overflow in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3, and PowerPoint in Microsoft Office 2004 for Mac, allows remote attackers to execute arbitrary code via a crafted structure in a Notes container in a PowerPoint file that causes PowerPoint to read more data than was allocated when creating a C++ object, leading to an overwrite of a function pointer, aka "Heap Corruption Vulnerability."
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1003494
Trend Micro Deep Security DPI Rule Name: 1003494 - Microsoft PowerPoint Heap Corruption Vulnerability
Software y versión afectados
- microsoft office 2004
- microsoft office_powerpoint 2002
- microsoft office_powerpoint 2003