Microsoft PowerPoint PPT Unspecified Arbitrary Code Execution

2006-09-26T04:49:01
ID OSVDB:29259
Type osvdb
Reporter McAfee()
Modified 2006-09-26T04:49:01

Description

Vulnerability Description

Microsoft PowerPoint contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a user opens a malicious PowerPoint PPT file. It is possible that the flaw may allow execute arbitrary code with the privileges of the user resulting in a loss of integrity.

Technical Description

There has been information that the exploit is triggered not upon opening, but rather upon user interaction with the file once it has been opened. This could not be confirmed.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Short Description

Microsoft PowerPoint contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a user opens a malicious PowerPoint PPT file. It is possible that the flaw may allow execute arbitrary code with the privileges of the user resulting in a loss of integrity.

References:

Security Tracker: 1017030 Secunia Advisory ID:22127 Other Advisory URL: http://vil.nai.com/vil/content/v_140666.htm Other Advisory URL: http://www.avertlabs.com/research/blog/?p=95 Microsoft Security Bulletin: MS06-058 Microsoft Knowledge Base Article: 925984 Microsoft Knowledge Base Article: 924163 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-10/0061.html Keyword: Win32/Controlppt.W,Win32/Controlppt.X,PPT.d/Trojan.PPDropper.F FrSIRT Advisory: ADV-2006-3794 CVE-2006-4694 CERT VU: 231204 Bugtraq ID: 20226