----------------------------------------------------------------------

Want a new job?

http://secunia.com/secunia_security_specialist/
http://secunia.com/hardcore_disassembler_and_reverse_engineer/

International Partner Manager - Project Sales in the IT-Security
Industry:
http://corporate.secunia.com/about_secunia/64/

----------------------------------------------------------------------

TITLE:
Microsoft Office PowerPoint Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA31453

VERIFY ADVISORY:
http://secunia.com/advisories/31453/

CRITICAL:
Highly critical

IMPACT:
System access

WHERE:
>From remote

SOFTWARE:
Microsoft PowerPoint 2000
http://secunia.com/product/3052/
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint
2007 File Formats
http://secunia.com/product/14165/
Microsoft Office PowerPoint 2003 Viewer
http://secunia.com/product/4033/
Microsoft Office 2004 for Mac
http://secunia.com/product/8713/
Microsoft Office 2007
http://secunia.com/product/13228/
Microsoft Office 2003 Student and Teacher Edition
http://secunia.com/product/2278/
Microsoft Office 2003 Standard Edition
http://secunia.com/product/2275/
Microsoft Office 2003 Small Business Edition
http://secunia.com/product/2277/
Microsoft Office 2003 Professional Edition
http://secunia.com/product/2276/
Microsoft Office XP
http://secunia.com/product/23/
Microsoft Office 2000
http://secunia.com/product/24/
Microsoft PowerPoint 2002
http://secunia.com/product/2223/
Microsoft Powerpoint 2003
http://secunia.com/product/5274/
Microsoft Office PowerPoint 2007
http://secunia.com/product/14702/

DESCRIPTION:
Some vulnerabilities have been reported in Microsoft PowerPoint,
which can be exploited by malicious people to compromise a user's
system.

1) A memory allocation error when processing malformed picture
indexes can be exploited to corrupt memory via a specially crafted
PowerPoint file.

2) A memory calculation error when processing malformed picture
indexes can be exploited to corrupt memory via a specially crafted
PowerPoint file.

3) A memory calculation error when processing list values can be
exploited to corrupt memory via a specially crafted PowerPoint file.

Successful exploitation of the vulnerabilities may allow execution of
arbitrary code.

SOLUTION:
Apply patches.

Microsoft Office PowerPoint 2000 SP3:
http://www.microsoft.com/downloads/details.aspx?FamilyId=e7c044d8-778a-4985-b25b-4f7f6e4abadd

Microsoft Office PowerPoint 2002 SP3:
http://www.microsoft.com/downloads/details.aspx?FamilyId=f8921074-7985-4d42-ac2b-d2f3b1d466ba

Microsoft Office PowerPoint 2003 SP2:
http://www.microsoft.com/downloads/details.aspx?FamilyId=7a7c21f0-5e0e-4dee-9710-1ce3d565913f

Microsoft Office PowerPoint 2003 SP3:
http://www.microsoft.com/downloads/details.aspx?FamilyId=7a7c21f0-5e0e-4dee-9710-1ce3d565913f

Microsoft Office PowerPoint 2007:
http://www.microsoft.com/downloads/details.aspx?FamilyId=55fd618a-e9c5-4f1e-b9a5-b2e47ec98ef1

Microsoft Office PowerPoint 2007 SP1:
http://www.microsoft.com/downloads/details.aspx?FamilyId=55fd618a-e9c5-4f1e-b9a5-b2e47ec98ef1

Microsoft Office PowerPoint Viewer 2003:
http://www.microsoft.com/downloads/details.aspx?FamilyId=911c8872-dec8-4b8e-9708-93dcabd3e036

Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint
2007 File Formats:
http://www.microsoft.com/downloads/details.aspx?familyid=84ce5d58-0010-4945-bce9-67a41f898f2f

Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint
2007 File Formats SP1:
http://www.microsoft.com/downloads/details.aspx?familyid=84ce5d58-0010-4945-bce9-67a41f898f2f

Microsoft Office 2004 for Mac:
http://www.microsoft.com/downloads/details.aspx?FamilyId=EBD3AF0C-3F62-4D18-BF45-881655683BD5

PROVIDED AND/OR DISCOVERED BY:
1,2) The vendor credits Ruben Santamarta, Reversemode.com via
iDefense Labs.
3) The vendor credits ADLab, Venustech.

ORIGINAL ADVISORY:
MS08-051 (KB949785):
http://www.microsoft.com/technet/security/Bulletin/MS08-051.mspx

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------