4 matches found
Microsoft PowerPoint LinkedSlideAtom堆溢出漏洞(MS10-004)
BUGTRAQ ID: 38101 CVE ID: CVE-2010-0030 Microsoft PowerPoint是微软Office套件中的文档演示工具。 PowerPoint处理特制PPT文件的方式中存在一个堆溢出漏洞,成功利用此漏洞的攻击者可完全控制受影响的系统。 在解析两个相关的PowerPoint记录类型期间会出现这个漏洞。第一个记录类型LinkedSlideAtom用于指定不同幻灯片的协作信息,该记录中的一个字段用于指定文件中所出现的某些记录的数目。负责填充用于存储记录数组的代码在将元素储存到数组中时没有执行任何边界检查,这可能导致堆溢出。 Microsoft...
CVE-2010-0030
CVE-2010-0030 describes a remote code execution vulnerability in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3 caused by a heap-based buffer overflow in the LinkedSlideAtom handling. A crafted PowerPoint file could allow an attacker to take control of the affected system. The issue is part of...
Microsoft PowerPoint LinkedSlideAtom Heap Overflow (MS10-004; CVE-2010-0030)
Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote code execution vulnerability has been identified in Microsoft PowerPoint. The vulnerability is due to a heap overflow in Microsoft PowerPoint LinkedSlideAtom when processing malicious PowerPoint...
MS10-004: Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (975416)
The remote Windows host is running a version of Microsoft PowerPoint that is affected by several vulnerabilities. If an attacker can trick a user on the affected host into opening a specially crafted PowerPoint file, these issues could be leveraged to execute arbitrary code subject to the user's...