[Forgot Password]
Login  Register Subscribe

25354

 
 

132804

 
 

133467

 
 

909

 
 

108562

 
 

152

Paid content will be excluded from the download.


Download | Alert*
OVAL

Arbitrary code execution vulnerability in Microsoft Powerpoint, Powerpoint viewer and Office Compatibility Pack - MS11-022

ID: oval:org.secpod.oval:def:1042Date: (C)2011-05-23   (M)2019-10-07
Class: PATCHFamily: windows




The host is missing an Important security update according to Microsoft security bulletin, MS11-022. The update is required to fix remote code execution vulnerability in Microsoft Powerpoint 2002, 2003, 2007 or 2010 or powerpoint viewer 2007 or 2010 or Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats. A flaw is present in the application which is caused when PowerPoint reads an invalid record in a specially crafted PowerPoint file. Successful exploitation allows remote attacker to execute arbitrary code.

Platform:
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows 10
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows Server 2008 R2
Product:
Microsoft PowerPoint 2010
Microsoft PowerPoint 2003
Microsoft PowerPoint 2002
Microsoft PowerPoint 2007
Microsoft PowerPoint Viewer 2007
Microsoft PowerPoint Viewer 2010
Microsoft Office Compatibility Pack
Reference:
MS11-022
CVE-2011-0655
CVE-2011-0656
CVE-2011-0976
CVE    3
CVE-2011-0655
CVE-2011-0656
CVE-2011-0976
CPE    13
cpe:/a:microsoft:office_compatibility_pack:sp2
cpe:/a:microsoft:powerpoint:2002:sp3
cpe:/a:microsoft:powerpoint:2007:sp2
cpe:/a:microsoft:powerpoint:2002
...
XCCDF    7
xccdf_com.secpod_benchmark_microsoft-windows-server-2008
xccdf_com.secpod_benchmark_microsoft-windows-server-2003
xccdf_com.secpod_benchmark_microsoft-windows-xp
xccdf_com.secpod_benchmark_microsoft-windows-7
...

© SecPod Technologies