Unspecified Vulnerability in PowerPoint

  Severity: HIGH
  CVE Identifier: CVE-2006-0022
  Advisory Date: FEB 15, 2011

  DESCRIPTION

Unspecified vulnerability in Microsoft PowerPoint in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP1 and SP2, Office 2004 for Mac, and v. X for Mac allows user-assisted attackers to execute arbitrary code via a PowerPoint document with a malformed record, which triggers memory corruption.

  TREND MICRO PROTECTION INFORMATION

Trend Micro Deep Security shields networks through Deep Packet Inspection (DPI) rules. Trend Micro customers using OfficeScan with Intrusion Defense Firewall (IDF) plugin are also protected from attacks using these vulnerabilities. Please refer to the filter number and filter name when applying appropriate DPI and/or IDF rules.

  AFFECTED SOFTWARE AND VERSION

  • Microsoft PowerPoint 2000
  • Microsoft PowerPoint 2000 SP2
  • Microsoft PowerPoint 2000 SP3
  • Microsoft PowerPoint 2000 SR1
  • Microsoft PowerPoint 2002
  • Microsoft PowerPoint 2002 SP1
  • Microsoft PowerPoint 2002 SP2
  • Microsoft PowerPoint 2002 SP3
  • Microsoft PowerPoint 2003
  • Microsoft PowerPoint 2003 SP1
  • Microsoft PowerPoint 2003 SP2
  • Microsoft PowerPoint 2003 SP3
  • Microsoft PowerPoint 2004