Microsoft PowerPoint 2000 CurrentUserAtom buffer overflow

2009-05-21T00:00:00
ID SAINT:7632C7E6D0764BDD359E79601516EA53
Type saint
Reporter SAINT Corporation
Modified 2009-05-21T00:00:00

Description

Added: 05/21/2009
CVE: CVE-2009-1131
BID: 34841
OSVDB: 54393

Background

Microsoft PowerPoint is presentation software included in the Microsoft Office desktop suite.

Problem

A buffer overflow vulnerability in Microsoft PowerPoint allows command execution when a user opens a presentation containing a specially crafted CurrentUserAtom record.

Resolution

Apply the update referenced in Microsoft Security Bulletin 09-017.

References

<http://www.microsoft.com/technet/security/bulletin/MS09-017.mspx>

Limitations

Exploit works on Microsoft PowerPoint 2000 SP3.

Platforms

Windows XP