Strike ID:
E10-00409
CVSS:
9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)
False Positive:
t
Variants:
36
Year:
2010

Description

This strike exploits a stack memory corruption vulnerability in Microsoft Office Powerpoint. The vulnerability is due to improper validation of user-supplied data when examining certain attributes in OEPlaceHolder atoms in PowerPoint files. This vulnerability can lead to arbitrary code execution in the context of the current user.

CVE

MSB

BID

OSVDB

62236