MS10-004: Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (975416)

high Nessus Plugin ID 44414



Arbitrary code can be executed on the remote host through Microsoft PowerPoint.


The remote Windows host is running a version of Microsoft PowerPoint that is affected by several vulnerabilities.

If an attacker can trick a user on the affected host into opening a specially crafted PowerPoint file, these issues could be leveraged to execute arbitrary code subject to the user's privileges.


Microsoft has released a set of patches for PowerPoint 2002 and 2003.

See Also

Plugin Details

Severity: High

ID: 44414

File Name: smb_nt_ms10-004.nasl

Version: 1.36

Type: local

Agent: windows

Published: 2/9/2010

Updated: 11/15/2018

Risk Information


Risk Factor: Critical

Score: 9.5


Risk Factor: High

Base Score: 9.3

Temporal Score: 8.1

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: E:H/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:microsoft:office, cpe:/a:microsoft:powerpoint

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2/9/2010

Vulnerability Publication Date: 2/9/2010

Exploitable With

Core Impact

Metasploit (MS10-004 Microsoft PowerPoint Viewer TextBytesAtom Stack Buffer Overflow)

Reference Information

CVE: CVE-2010-0029, CVE-2010-0030, CVE-2010-0031, CVE-2010-0032, CVE-2010-0033, CVE-2010-0034

BID: 38099, 38101, 38103, 38104, 38107, 38108

MSFT: MS10-004

MSKB: 973143, 976881

CWE: 94, 119