Search:

June 2006

CIAC BULLETIN REVISED Q-224 Vulnerability in Microsoft PowerPoint

ID: 00437
Ref: 424/2006
Date: 23 June 2006:13:27:06
Version: 1

Title: CIAC BULLETIN REVISED Q-224 Vulnerability in Microsoft PowerPoint
Abstract: There is a remote code execution vulnerability in PowerPoint that uses a malformed record. An attacker could exploit the vulnerability by constructing a specially crafted PowerPoint file that could allow remote code execution.
Vendors affected: CIAC
Operating systems affected: CIAC
Applications affected: CIAC

Title
=====

CIAC BULLETIN REVISED Q-224 Vulnerability in Microsoft PowerPoint

Detail
======

There is a remote code execution vulnerability in PowerPoint that uses a malformed
record. An attacker could exploit the vulnerability by constructing a specially
crafted PowerPoint file that could allow remote code execution.

- -----BEGIN PGP SIGNED MESSAGE-----

CIAC has revised Q-224 to note that Microsoft Security Bulletin MS06-028
(916768) revised the #What updates does this release replace?# under the
#Frequently Asked Questions (FAQ) Related to this Security Update# section.
__________________________________________________________

The U.S. Department of Energy
Computer Incident Advisory Capability
___ __ __ _ ___
/ | /_\ /
\___ __|__ / \ \___
__________________________________________________________

INFORMATION BULLETIN

Vulnerability in Microsoft PowerPoint
[Microsoft Security Bulletin MS06-028 (916768)]

June 14, 2006 17:00 GMT Number Q-224
[REVISED 22 Jun 2006]
______________________________________________________________________________
PROBLEM: There is a remote code execution vulnerability in PowerPoint
that uses a malformed record. An attacker could exploit the
vulnerability by constructing a specially crafted PowerPoint
file that could allow remote code execution.
PLATFORM: Microsoft Office 2000 Service Pack 3
Microsoft PowerPoint 2000
Microsoft Office XP Service Pack 3
Microsoft PowerPoint 2002
Microsoft Office 2003 Service Pack 1 or Service Pack 2
Microsoft PowerPoint 2003
Microsoft Office 2004 for Mac
Microsoft PowerPoint 2004 for Mac
Microsoft Office v. X for Mac
Microsoft PowerPoint v. X for Mac
DAMAGE: When PowerPoint opens a specially crafted PowerPoint file using
a malformed record, it may corrupt system memory in such a way
that an attacker could execute arbitrary code. Users whose
accounts are configured to have fewer user rights on the system
could be less affected than users who operate with
administrative user rights.
SOLUTION: Apply the security updates.
______________________________________________________________________________
VULNERABILITY The risk is HIGH. A remote attacker who exploits this
ASSESSMENT: vulnerability may be able to take complete control of the
victim's machine.
______________________________________________________________________________
LINKS:
CIAC BULLETIN: http://www.ciac.org/ciac/bulletins/q-224.shtml
ORIGINAL BULLETIN: http://www.microsoft.com/technet/security/Bulletin/MS06-028.mspx
CVE: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=
CVE-2006-0022
______________________________________________________________________________

- -----BEGIN PGP SIGNATURE-----
Version: 4.0 Business Edition

iQCVAwUBRJsak7nzJzdsy3QZAQG7ygQAyabPTl8dT09+B3NcPPRgdF+IVr5SAGFK
6n7CUDO2CC8c/SNJVgcMtKmMxyRwEptgNe3bNBNg98E0XX/iDmhcygb/m8ehzuM7
Ra1OIq7pc5b+CxH1TTdcs0Sy57DUdkAWIahf/TDuZlfy2ibeOIBxl95Q6FiBQ80b
jSAxYTfZWoM=
=v6WW
- -----END PGP SIGNATURE-----