Microsoft PowerPoint Picture Index Remote Code Execution Vulnerability
BID:30552
Info
Microsoft PowerPoint Picture Index Remote Code Execution Vulnerability
| Bugtraq ID: | 30552 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2008-0120 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 12 2008 12:00AM |
| Updated: | Aug 25 2008 10:05PM |
| Credit: | Ruben Santamarta from Reversemode.com, working with iDefense Labs |
| Vulnerable: |
Microsoft PowerPoint Viewer 2003 0 |
| Not Vulnerable: | |
Discussion
Microsoft PowerPoint Picture Index Remote Code Execution Vulnerability
Microsoft PowerPoint is prone to a remote code-execution vulnerability due to an integer-overflow error.
An attacker could exploit this issue by enticing a victim to open a malicious PowerPoint file.
Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in user.
Microsoft PowerPoint is prone to a remote code-execution vulnerability due to an integer-overflow error.
An attacker could exploit this issue by enticing a victim to open a malicious PowerPoint file.
Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in user.
Exploit / POC
Microsoft PowerPoint Picture Index Remote Code Execution Vulnerability
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
Solution / Fix
Microsoft PowerPoint Picture Index Remote Code Execution Vulnerability
Solution:
The vendor has released an advisory and updates. Please see the references for more information.
UPDATE: (August 20, 2008): Microsoft has released version 2 of the fixes for this issue. Users who manually installed version 1 of the fixes may need to reinstall version 2. Please see the updated Microsoft advisory for more information.
Microsoft PowerPoint Viewer 2003 0
Solution:
The vendor has released an advisory and updates. Please see the references for more information.
UPDATE: (August 20, 2008): Microsoft has released version 2 of the fixes for this issue. Users who manually installed version 1 of the fixes may need to reinstall version 2. Please see the updated Microsoft advisory for more information.
Microsoft PowerPoint Viewer 2003 0
-
Microsoft Security Update for Microsoft Office PowerPoint Viewer 2003 (KB949041)
http://www.microsoft.com/downloads/details.aspx?FamilyId=911c8872-dec8 -4b8e-9708-93dcabd3e036&displaylang=en
References
Microsoft PowerPoint Picture Index Remote Code Execution Vulnerability
References:
References:
- Microsoft PowerPoint Homepage (Microsoft)
- Microsoft PowerPoint Viewer 2003 Cstring Integer Overflow Vulnerability (iDefense)
- Microsoft Security Bulletin MS08-051 (Microsoft)