MS06-028: Vulnerability in Microsoft PowerPoint Could Allow Remote Code Execution (916768) (Mac OS X)
High Nessus Plugin ID 21724
SynopsisAn application installed on the remote Mac OS X host is affected by multiple remote code execution vulnerabilities.
DescriptionThe remote host is running a version of Microsoft PowerPoint that may allow arbitrary code to be run.
To succeed, the attacker would have to send a rogue file to a user of the remote computer and have it open it with PowerPoint. A vulnerability in the font parsing handler would then result in code execution.
SolutionMicrosoft has released a set of patches for PowerPoint X and 2004 for Mac OS X.