CERT-In Vulnerability Note CIVN-2006-50
Microsoft PowerPoint Malformed Record Vulnerability
Original Issue Date: June 14, 2006
Severity Rating: High
Systems Affected
- Microsoft Office 2000 Service Pack 3
- Microsoft PowerPoint 2000
- Microsoft Office XP Service Pack 3
- Microsoft PowerPoint 2002
- Microsoft Office 2003 Service Pack 1
- Microsoft Office 2003 Service Pack 2
- Microsoft PowerPoint 2003
- Microsoft Office 2004 for Mac
- Microsoft PowerPoint 2004 for Mac
- Microsoft Office v. X for Mac
- Microsoft PowerPoint v. X for Mac
Overview
A vulnerability has been reported in Microsoft Power Point that could be exploited by an attacker to take complete control of the vulnerable system.
Description
The vulnerability is caused due to a memory corruption error while processing specially crafted Power Point file using a malformed record. System memory corruption can lead to the execution of arbitrary code.
The attacker could exploit this vulnerability by creating a malicious office file and hosting the same on a website and enticing a user to visit the same or by sending the malicious file as email attachment. The attacker could take the complete control of the system, if the user is logged on with administrator privileges.
Workarounds
- Do not open or save Microsoft PowerPoint files received from un-trusted sources
Solution
Apply appropriate patches as mentioned in Microsoft Security Bulletin MS06-028
References
Microsoft
http://www.microsoft.com/technet/security/bulletin/ms06-028.mspx
US CERT
http://www.kb.cert.org/vuls/id/190089
Secunia
http://secunia.com/advisories/20633/
FrSIRT
http://www.frsirt.com/english/advisories/2006/2325
SANS
http://isc.sans.org/diary.php?storyid=1407
CVE Name
CVE-2006-0022
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Contact Information
Phone: +91-11-24368572
Postal address
Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003
|
