| VID |
26234 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (924163) for 'Vulnerabilities in Microsoft Office' has not been applied. Microsoft PowerPoint 2000, 2002, and 2003 could allow a remote attacker to execute arbitrary code, caused by the following vulnerabilities:
- PowerPoint Malformed Object Pointer Vulnerability (CVE-2006-3435)
- PowerPoint Malformed Data Record Vulnerability (CVE-2006-3876)
- PowerPoint Malformed Record Memory Corruption Vulnerability (CVE-2006-3877)
- PowerPoint Malformed Record Vulnerability (CVE-2006-4694)
By constructing a specially crafted PPT file, a remote attacker could potentially execute arbitrary code if a user visited a Web site or viewed a specially crafted e-mail message. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms06-058.mspx
http://www.kb.cert.org/vuls/id/187028
http://www.kb.cert.org/vuls/id/205948
http://www.kb.cert.org/vuls/id/938196
http://www.kb.cert.org/vuls/id/231204
http://www.zerodayinitiative.com/advisories/ZDI-06-032.html
http://www.frsirt.com/english/advisories/2006/3794
* Platforms Affected:
Microsoft PowerPoint 2000, 2002, 2003
Microsoft PowerPoint 2004 for Mac
Microsoft PowerPoint 2004 v. X for Mac
Apple Mac OS Any version
Microsoft Windows Any version |
| Recommendation |
Apply the appropriate patch (924163) for your system, as listed in Microsoft Security Bulletin MS06-058 at http://www.microsoft.com/technet/security/bulletin/ms06-058.mspx |
| Related URL |
CVE-2006-0022 (CVE) |
| Related URL |
18382 (SecurityFocus) |
| Related URL |
26784 (ISS) |
|
