5 matches found
Microsoft PowerPoint TextCharsAtom记录解析栈溢出漏洞(MS10-004)
BUGTRAQ ID: 38107 CVE ID: CVE-2010-0034 Microsoft PowerPoint是微软Office套件中的文档演示工具。 PowerPoint处理特制PPT文件中的TextCharsAtom(0x0fa0)记录时没有对大小参数执行边界检查,memcpy将文件中的用户数据拷贝到了栈上,这可能溢出关键的异常结构,导致执行任意代码。 Microsoft PowerPoint 2003 SP3 厂商补丁: Microsoft --------- Microsoft已经为此发布了一个安全公告(MS10-004)以及相应补丁:...
CVE-2010-0034
CVE-2010-0034 is a vulnerability in Microsoft PowerPoint handling of the TextCharsAtom record that enables a stack-based buffer overflow on PowerPoint 2003 SP3 and related viewers. The issue allows remote code execution when a user opens a specially crafted PowerPoint file; the vulnerable compone...
TPTI-10-02: Microsoft Office PowerPoint Viewer TextCharsAtom Record Code Execution Vulnerability
TPTI-10-02: Microsoft Office PowerPoint Viewer TextCharsAtom Record Code Execution Vulnerability http://dvlabs.tippingpoint.com/advisory/TPTI-10-02 February 9, 2010 -- CVE ID: CVE-2010-0034 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office PowerPoint Viewer -- TippingPointTM I...
MS10-004: Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (975416)
The remote Windows host is running a version of Microsoft PowerPoint that is affected by several vulnerabilities. If an attacker can trick a user on the affected host into opening a specially crafted PowerPoint file, these issues could be leveraged to execute arbitrary code subject to the user's...
Microsoft PowerPoint Viewer TextCharsAtom Record Stack Overflow (MS10-004; CVE-2010-0034)
Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote code execution vulnerability has been identified in Microsoft PowerPoint. The vulnerability is due to a stack overflow in Microsoft PowerPoint TextCharsAtom record when processing malicious...