Microsoft PowerPoint invalid object reference vulnerability

Added: 04/20/2009
CVE: CVE-2009-0556
BID: 34351
OSVDB: 53182

Background

Microsoft PowerPoint is presentation software included in the Microsoft Office desktop suite.

Problem

A memory corruption vulnerability in Microsoft PowerPoint allows command execution when an invalid object is referenced.

Resolution

Use one of the workarounds described in Microsoft security advisory 969136.

References

http://www.kb.cert.org/vuls/id/627331

Limitations

Exploit works on Microsoft PowerPoint 2003 SP3 and requires a user to open the exploit file in Microsoft PowerPoint.

Platforms

Windows XP

Back to exploit index