Vulnerabilities > CVE-2006-0022 - Remote Code Execution vulnerability in Microsoft PowerPoint Malformed Record
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Unspecified vulnerability in Microsoft PowerPoint in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP1 and SP2, Office 2004 for Mac, and v. X for Mac allows user-assisted attackers to execute arbitrary code via a PowerPoint document with a malformed record, which triggers memory corruption.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 13 |
Nessus
NASL family Windows : Microsoft Bulletins NASL id SMB_NT_MS06-028.NASL description The remote host is running a version of Microsoft PowerPoint that is subject to a fla that could allow arbitrary code to be run. An attacker may use this to execute arbitrary code on this host. To succeed, the attacker would have to send a rogue file to a user of the remote computer and have it open it. Then a bug in the font parsing handler would result in code execution. last seen 2020-06-01 modified 2020-06-02 plugin id 21691 published 2006-06-13 reporter This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/21691 title MS06-028: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (916768) NASL family MacOS X Local Security Checks NASL id MACOSX_MS_06-028.NASL description The remote host is running a version of Microsoft PowerPoint that may allow arbitrary code to be run. To succeed, the attacker would have to send a rogue file to a user of the remote computer and have it open it with PowerPoint. A vulnerability in the font parsing handler would then result in code execution. last seen 2019-10-28 modified 2006-06-16 plugin id 21724 published 2006-06-16 reporter This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/21724 title MS06-028: Vulnerability in Microsoft PowerPoint Could Allow Remote Code Execution (916768) (Mac OS X)
Oval
accepted 2012-05-28T04:00:04.532-04:00 class vulnerability contributors name Robert L. Hollis organization ThreatGuard, Inc. name Matthew Wojcik organization The MITRE Corporation name Matthew Wojcik organization The MITRE Corporation name Shane Shaffer organization G2, Inc.
description Unspecified vulnerability in Microsoft PowerPoint in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP1 and SP2, Office 2004 for Mac, and v. X for Mac allows user-assisted attackers to execute arbitrary code via a PowerPoint document with a malformed record, which triggers memory corruption. family windows id oval:org.mitre.oval:def:1069 status accepted submitted 2006-06-14T09:55:00.000-04:00 title Microsoft PowerPoint 2003 Remote Code Execution Using a Malformed Record Vulnerability version 5 accepted 2012-05-28T04:01:23.896-04:00 class vulnerability contributors name Robert L. Hollis organization ThreatGuard, Inc. name Matthew Wojcik organization The MITRE Corporation name Jonathan Baker organization The MITRE Corporation name Shane Shaffer organization G2, Inc.
description Unspecified vulnerability in Microsoft PowerPoint in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP1 and SP2, Office 2004 for Mac, and v. X for Mac allows user-assisted attackers to execute arbitrary code via a PowerPoint document with a malformed record, which triggers memory corruption. family windows id oval:org.mitre.oval:def:1836 status accepted submitted 2006-06-14T09:55:00.000-04:00 title Microsoft PowerPoint 2002 Remote Code Execution Using a Malformed Record Vulnerability version 6 accepted 2012-05-28T04:01:26.754-04:00 class vulnerability contributors name Robert L. Hollis organization ThreatGuard, Inc. name John Hoyland organization Centennial Software name Robert L. Hollis organization ThreatGuard, Inc. name Shane Shaffer organization G2, Inc.
description Unspecified vulnerability in Microsoft PowerPoint in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP1 and SP2, Office 2004 for Mac, and v. X for Mac allows user-assisted attackers to execute arbitrary code via a PowerPoint document with a malformed record, which triggers memory corruption. family windows id oval:org.mitre.oval:def:1984 status accepted submitted 2006-06-14T09:55:00.000-04:00 title ecord Vulnerability version 5
References
- http://secunia.com/advisories/20633
- http://securitytracker.com/id?1016287
- http://www.kb.cert.org/vuls/id/190089
- http://www.osvdb.org/26435
- http://www.securityfocus.com/bid/18382
- http://www.us-cert.gov/cas/techalerts/TA06-164A.html
- http://www.vupen.com/english/advisories/2006/2325
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-028
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26784
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1069
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1836
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1984