Info

Disclosure

Oct 10, 2006

Discovery

Jun 14, 2006

Dates

Exploit

Unknown

Solution

Unknown

Description

Microsoft PowerPoint contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when when a user opens a specially crafted PowerPoint PPT file with malicious data in the slide notes field. It is possible that the flaw may cause an erroneous object pointer calculation and, as a result, execution of code with the privileges of the user resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Private, Exploit Unknown
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation

PowerPoint

2003

References

Security Tracker: 1017030
CVE ID: 2006-3435 (see also: NVD)
Bugtraq ID: 20304
Related OSVDB ID: 29259 29447 29448
Microsoft Knowledge Base Article: 924163
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-10/0170.html
Other Advisory URL: http://www.zerodayinitiative.com/advisories/ZDI-06-032.html
Microsoft Security Bulletin: MS06-058

Credit

Arnaud Dovi aka 'class101' - -

Direct URL: http://osvdb.org/36218