| VID |
26222 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (922968) for 'Vulnerabilities in Microsoft Office' has not been applied. Microsoft PowerPoint 2000, 2002, and 2003 could allow a remote attacker to execute arbitrary code, caused by the following vulnerabilities:
- Microsoft PowerPoint Mso.dll Vulnerability (CVE-2006-3590)
- Microsoft PowerPoint Malformed Record Vulnerability (CVE-2006-3449)
By constructing a specially crafted PPT file, a remote attacker could potentially execute arbitrary code if a user visited a Web site or viewed a specially crafted e-mail message. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms06-048.mspx
http://lists.grok.org.uk/pipermail/full-disclosure/2006-August/048594.html
http://www.us-cert.gov/cas/techalerts/TA06-220A.html
http://www.kb.cert.org/vuls/id/884252
* Platforms Affected:
Microsoft PowerPoint 2000, 2002, 2003
Microsoft PowerPoint 2004 for Mac
Microsoft PowerPoint 2004 v. X for Mac
Apple Mac OS Any version
Microsoft Windows Any version |
| Recommendation |
Apply the appropriate patch (922968) for your system, as listed in Microsoft Security Bulletin MS06-048 at http://www.microsoft.com/technet/security/bulletin/ms06-048.mspx |
| Related URL |
CVE-2006-0007,CVE-2006-0033 (CVE) |
| Related URL |
18913,18915 (SecurityFocus) |
| Related URL |
(ISS) |
|
