Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:11282
HistoryMay 13, 2009 - 12:00 a.m.

Microsoft PowerPoint多个安全漏洞

2009-05-1300:00:00
Root
www.seebug.org
12

0.951 High

EPSS

Percentile

99.1%

JSON

CVE-2009-0220
CVE-2009-0221
CVE-2009-0222
CVE-2009-0223
CVE-2009-0224
CVE-2009-0225
CVE-2009-0226
CVE-2009-0227
CVE-2009-1128
CVE-2009-1129
CVE-2009-1130
CVE-2009-1131
CVE-2009-1137

Microsoft PowerPoint存在多个安全漏洞,它可以被恶意利用。

1 )两个边界错误处理某些原子可以被利用来造成基于堆栈的缓冲区溢出通过一个特制的PowerPoint文件。

2 )时出现错误剖析段落格式的数据可以被用来腐败内存通过特制的PowerPoint 4.0文件。

3 )一个整数溢出错误解析无效记录类型可以利用腐败的记忆通过特制的PowerPoint文件。

4 )时发生错误解析名单记录可以被用来腐败内存通过特制的PowerPoint文件。

5 )时发生错误解析某些畸形结构价值观可以利用腐败的记忆通过特制的PowerPoint文件。

6 )多错误剖析声音数据时,可以利用腐败的记忆通过特制的PowerPoint 4.0和95个文件。

成功利用这些漏洞允许执行任意代码。

Microsoft Office 2000

Microsoft Office 2003 Professional Edition
Microsoft Office 2003 Small Business Edition
Microsoft Office 2003 Standard Edition
Microsoft Office 2003 Student and Teacher Edition
Microsoft Office 2004 for Mac
Microsoft Office 2007
Microsoft Office 2008 for Mac
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats
Microsoft Office PowerPoint 2007
Microsoft Office PowerPoint Viewer 2003
Microsoft Office PowerPoint Viewer 2007
Microsoft Office XP
Microsoft Open XML File Format Converter for Mac
Microsoft PowerPoint 2000
Microsoft PowerPoint 2002
Microsoft Powerpoint 2003
Microsoft Works 8.x
Microsoft Works 9.x

Microsoft Office PowerPoint 2000 SP3:
<a href=“http://www.microsoft.com/downloads/details.aspx?familyid=f443312a-ac74-4ebc-a4ac-7a756aa67894” target=“_blank”>http://www.microsoft.com/downloads/de…=f443312a-ac74-4ebc-a4ac-7a756aa67894</a>

Microsoft Office PowerPoint 2002 SP3:
<a href=“http://www.microsoft.com/downloads/details.aspx?familyid=a24ec7ab-c1c7-4ddb-8b6e-107f1af67f49” target=“_blank”>http://www.microsoft.com/downloads/de…=a24ec7ab-c1c7-4ddb-8b6e-107f1af67f49</a>

Microsoft Office PowerPoint 2003 SP3:
<a href=“http://www.microsoft.com/downloads/details.aspx?familyid=ccfa978b-3340-40db-a45d-c880ba36b106” target=“_blank”>http://www.microsoft.com/downloads/de…=ccfa978b-3340-40db-a45d-c880ba36b106</a>

Microsoft Office PowerPoint 2007 SP1:

<a href=“http://www.microsoft.com/downloads/details.aspx?familyid=11f8380f-ffb6-4c22-a89c-3dc55d0f9834” target=“_blank”>http://www.microsoft.com/downloads/de…=11f8380f-ffb6-4c22-a89c-3dc55d0f9834</a>

Microsoft Office PowerPoint 2007 SP2:
<a href=“http://www.microsoft.com/downloads/details.aspx?familyid=11f8380f-ffb6-4c22-a89c-3dc55d0f9834” target=“_blank”>http://www.microsoft.com/downloads/de…=11f8380f-ffb6-4c22-a89c-3dc55d0f9834</a>

Microsoft Office 2004 for Mac:
According to the vendor, patches are still in development and will be released at a later stage.

Microsoft Office 2008 for Mac:
According to the vendor, patches are still in development and will be released at a later stage.

Open XML File Format Converter for Mac:
According to the vendor, patches are still in development and will be released at a later stage.

PowerPoint Viewer 2003:
<a href=“http://www.microsoft.com/downloads/details.aspx?familyid=6a57e6ed-bd24-406f-87bb-117391e083e0” target=“_blank”>http://www.microsoft.com/downloads/de…=6a57e6ed-bd24-406f-87bb-117391e083e0</a>

PowerPoint Viewer 2007 SP1/SP2:
<a href=“http://www.microsoft.com/downloads/details.aspx?familyid=141b8338-5c52-4326-a9e4-d2f2d8940d9c” target=“_blank”>http://www.microsoft.com/downloads/de…=141b8338-5c52-4326-a9e4-d2f2d8940d9c</a>

Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1:

<a href=“http://www.microsoft.com/downloads/details.aspx?familyid=e1d3a4c3-538a-4f98-8d60-250803a80e2a” target=“_blank”>http://www.microsoft.com/downloads/de…=e1d3a4c3-538a-4f98-8d60-250803a80e2a</a>

Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2:
<a href=“http://www.microsoft.com/downloads/details.aspx?familyid=e1d3a4c3-538a-4f98-8d60-250803a80e2a” target=“_blank”>http://www.microsoft.com/downloads/de…=e1d3a4c3-538a-4f98-8d60-250803a80e2a</a>

Microsoft Works 8.5:
According to the vendor, patches are still in development and will be released at a later stage.

Microsoft Works 9.0:
According to the vendor, patches are still in development and will be released at a later stage.<br><b>Provided and/or discovered by</b>:<br>1) Carsten Eiram, Secunia Research.

  1. The vendor credits an anonymous person via VeriSign iDefense Labs.
  2. The vendor credits Sean Larsson, VeriSign iDefense Labs.
  3. The vendor credits Sean Larsson, VeriSign iDefense Labs.
  4. The vendor credits Ling and Wushi, team509 via ZDI and Sean Larsson, VeriSign iDefense Labs.
  5. The vendor credits:
  • Marsu Pilami, VeriSign iDefense Labs.
  • Nicolas Joly, Vupen.
  • An anonymous person via VeriSign iDefense Labs.<br><b>Original Advisory</b>:<br>MS09-017 (KB957781, KB957784, KB957789, KB957790, KB967340, KB969615, KB969618, KB970059):

<a href=“http://www.microsoft.com/technet/security/Bulletin/MS09-017.mspx” target=“_blank”>http://www.microsoft.com/technet/security/Bulletin/MS09-017.mspx</a>

Related

securityvulns 13
nessus 2
openvas 7
cve 13
prion 13
checkpoint_advisories 22
saint 16
symantec 8
seebug 4
zdi 1
securityvulns
securityvulns
Microsoft Power Point multiple security vulnerabilities
2009-06-11 00:00:00
Microsoft Security Bulletin MS09-017 - Critical Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution &#40;967340&#41;
2009-05-12 00:00:00
iDefense Security Advisory 05.12.09: Microsoft PowerPoint 4.2 Conversion Filter Heap Corruption Vulnerability
2009-05-13 00:00:00
nessus
nessus
MS09-017: Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (967340)
2009-05-13 00:00:00
MS09-017 / MS09-021 / MS09-027: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (967340 / 969462 / 969514) (Mac OS X)
2010-10-20 00:00:00
openvas
openvas
Microsoft PowerPoint File Parsing Remote Code Execution Vulnerability (967340)
2009-04-07 00:00:00
Microsoft PowerPoint File Parsing Remote Code Execution Vulnerability (967340)
2009-04-07 00:00:00
Ubuntu USN-774-1 (moin)
2009-06-05 00:00:00
cve
cve
CVE-2009-0227
2009-05-12 22:30:00
CVE-2009-1137
2009-05-12 22:30:00
CVE-2009-0226
2009-05-12 22:30:00
prion
prion
Format string
2009-05-12 22:30:00
Format string
2009-05-12 22:30:00
Stack overflow
2009-05-12 22:30:00
checkpoint_advisories
checkpoint_advisories
Microsoft PowerPoint Data Out of Bounds Stack Buffer Overflow (MS09-017; CVE-2009-1128; CVE-2009-1131)
2009-05-12 00:00:00
Microsoft PowerPoint Data Out of Bounds Stack Buffer Overflow (MS09-017) - Ver2 (CVE-2009-1131)
2014-03-03 00:00:00
Microsoft PowerPoint Converter ExObject Record Memory Corruption (MS09-017; CVE-2009-0223)
2009-05-12 00:00:00
saint
saint
Microsoft PowerPoint 2000 CurrentUserAtom buffer overflow
2009-05-21 00:00:00
Microsoft PowerPoint 2000 CurrentUserAtom buffer overflow
2009-05-21 00:00:00
Microsoft PowerPoint Legacy File Format Master Page buffer overflow
2009-05-14 00:00:00
symantec
symantec
Microsoft PowerPoint Sound Data (CVE-2009-0225) Remote Code Execution Vulnerability
2009-05-12 00:00:00
Microsoft PowerPoint Sound Data (CVE-2009-1137) Remote Code Execution Vulnerability
2009-05-12 00:00:00
Microsoft PowerPoint Sound Data (CVE-2009-0227) Remote Code Execution Vulnerability
2009-05-12 00:00:00
seebug
seebug
Microsoft PowerPoint Sound Data (CVE-2009-0225)远程代码执行漏洞
2009-05-15 00:00:00
Microsoft PowerPoint PP4X32.DLL库多个栈溢出漏洞(MS09-017)
2009-05-15 00:00:00
Microsoft PowerPoint Notes容器堆溢出漏洞(MS09-017)
2009-05-15 00:00:00
zdi
zdi
Microsoft Office PowerPoint Notes Container Heap Overflow Vulnerability
2009-05-12 00:00:00

0.951 High

EPSS

Percentile

99.1%

JSON
Related for SSV:11282
securityvulns13nessus2openvas7cve13prion13checkpoint_advisories22saint16symantec8seebug4zdi1