SMTP: Microsoft PowerPoint OEPlaceholderAtom placementId Invalid Array Indexing
This signature detects attempts to exploit a known code execution vulnerability in Microsoft Office PowerPoint. It is due to the way that the application handles specially crafted PowerPoint files. A remote unauthenticated attacker can entice a user to open a maliciously crafted file, which can result in arbitrary code execution.
Extended Description
Array index error in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3, and PowerPoint in Office 2004 for Mac, allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint OEPlaceholderAtom 'placementId' Invalid Array Indexing Vulnerability."
Affected Products
Microsoft powerpoint
Short Name
SMTP:EMAIL:PPT-OEP-ATOM-INV
Severity
Major
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
Array CVE-2010-0031 Indexing Invalid Microsoft OEPlaceholderAtom PowerPoint bid:38103 placementId
Release Date
01/12/2018
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Microsoft
CVSS Score
9.3