Microsoft PowerPoint LinkedSlideAtom堆溢出漏洞（MS10-004）

BUGTRAQ ID: 38101 CVE ID: CVE-2010-0030 Microsoft PowerPoint是微软Office套件中的文档演示工具。 PowerPoint处理特制PPT文件的方式中存在一个堆溢出漏洞，成功利用此漏洞的攻击者可完全控制受影响的系统。 在解析两个相关的PowerPoint记录类型期间会出现这个漏洞。第一个记录类型LinkedSlideAtom用于指定不同幻灯片的协作信息，该记录中的一个字段用于指定文件中所出现的某些记录的数目。负责填充用于存储记录数组的代码在将元素储存到数组中时没有执行任何边界检查，这可能导致堆溢出。 Microsoft...

Microsoft PowerPoint LinkedSlideAtom Heap Overflow (MS10-004; CVE-2010-0030)

Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote code execution vulnerability has been identified in Microsoft PowerPoint. The vulnerability is due to a heap overflow in Microsoft PowerPoint LinkedSlideAtom when processing malicious PowerPoint...

Microsoft PowerPoint 'LinkedSlideAtom' Heap Overflow Remote Code Execution Vulnerability

Description Microsoft PowerPoint is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting user to open a malicious PowerPoint file. Successful exploits would allow the attacker to execute arbitrary code in the context of the currently...