This script is Copyright (C) 2010-2017 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host through Microsoft
The remote Windows host is running a version of Microsoft PowerPoint
that is affected by several vulnerabilities :
- A buffer overflow exists in the way the application
parses the PowerPoint file format, which can be abused
to execute arbitrary code if an attacker can trick a
user into opening a specially crafted PowerPoint 95
file using the affected application. Note that by
default opening of such files is blocked in Microsoft
PowerPoint 2003 Service Pack 3. (CVE-2010-2572)
- An integer underflow exists in the way the application
parses the PowerPoint file format, which could lead to
heap corruption and allow for arbitrary code execution
when opening a specially crafted PowerPoint file.
See also :
Microsoft has released a set of patches for PowerPoint 2002 and
2003 as well as PowerPoint Viewer 2007.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true