Release DateAug 18, 2008 |
Severitycritical |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates a possible attempt to exploit a remote code-execution vulnerability in Microsoft PowerPoint.The vulnerability is caused by an error that occurs when the vulnerable software handles a malformed .PPT file. It allows a remote attacker to execute arbitrary code via sending a crafted .PPT. |
Affected ProductsMicrosoft Office 2000 Service Pack 3Microsoft Office XP Service Pack 3 Microsoft Office 2003 Service Pack 2 Microsoft Office 2003 Service Pack 3 2007 Microsoft Office System 2007 Microsoft Office System Service Pack 1 |
Recommended ActionsApply patch, available from the web site.http://www.microsoft.com/technet/security/Bulletin/ms08-051.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2008-1455 |
Reference/shttp://www.securityfocus.com/bid/30579 (BugTraq)http://www.microsoft.com/technet/security/Bulletin/ms08-051.mspx (MS-ID) |
