Release DateApr 13, 2011 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates a possible attempt to exploit a remote code-execution vulnerability in Microsoft PowerPoint.The vulnerability is caused by an error when the vulnerable software handles a malformed .PPT file. It allows a remote attacker to execute arbitrary code via sending a crafted .PPT file. |
Affected ProductsMicrosoft PowerPoint 2007 Service Pack 2Microsoft PowerPoint 2010 (32-bit editions) Microsoft PowerPoint 2010 (64-bit editions) Microsoft Office 2004 for Mac Microsoft Office 2008 for Mac Microsoft Office for Mac 2011 Open XML File Format Converter for Mac Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 2 Microsoft PowerPoint Viewer 2007 Service Pack 2 Microsoft PowerPoint Viewer Microsoft PowerPoint Web App |
Recommended ActionsApply patch, available from the web site.http://www.microsoft.com/technet/security/Bulletin/MS11-022.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2011-0655 |
Reference/shttp://technet.microsoft.com/en-us/security/bulletin/MS11-022.mspx (MS-ID) |
