Executive Summary
| Summary | |
|---|---|
| Title | Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (949785) |
| Informations | |||
|---|---|---|---|
| Name | MS08-051 | First vendor Publication | 2008-08-12 |
| Vendor | Microsoft | Last vendor Modification | 2008-09-10 |
| Severity (Vendor) | Critical | Revision | 2.1 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Revision Note: V2.1 (September 10, 2008): Added Microsoft Office Live Meeting 2005 client and Microsoft Office Live Meeting 2007 client to the list of non-affected software.Summary: This security update resolves three privately reported vulnerabilities in Microsoft Office PowerPoint and Microsoft Office PowerPoint Viewer that could allow remote code execution if a user opens a specially crafted PowerPoint file. An attacker who successfully exploited any of these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
Original Source
| Url : http://www.microsoft.com/technet/security/bulletin/MS08-051.mspx |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-399 | Resource Management Errors |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:5555 | |||
| Oval ID: | oval:org.mitre.oval:def:5555 | ||
| Title: | Parsing Overflow Vulnerability | ||
| Description: | A "memory calculation error" in Microsoft Office PowerPoint 2000 SP3, 2002 SP3, 2003 SP2, and 2007 through SP1; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 through SP1; and Office 2004 for Mac allows remote attackers to execute arbitrary code via a PowerPoint file with crafted list values that trigger memory corruption, aka "Parsing Overflow Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2008-1455 | Version: | 9 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Office Compatibility Pack Microsoft Office PowerPoint 2000 Microsoft Office PowerPoint 2002 Microsoft Office PowerPoint 2003 Microsoft Office PowerPoint 2007 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:5724 | |||
| Oval ID: | oval:org.mitre.oval:def:5724 | ||
| Title: | Memory Calculation Vulnerability | ||
| Description: | A "memory calculation error" in Microsoft PowerPoint Viewer 2003 allows remote attackers to execute arbitrary code via a PowerPoint file with an invalid picture index that triggers memory corruption, aka "Memory Calculation Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2008-0121 | Version: | 8 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Office PowerPoint Viewer 2003 |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:5768 | |||
| Oval ID: | oval:org.mitre.oval:def:5768 | ||
| Title: | Memory Allocation Vulnerability | ||
| Description: | Integer overflow in Microsoft PowerPoint Viewer 2003 allows remote attackers to execute arbitrary code via a PowerPoint file with a malformed picture index that triggers memory corruption, related to handling of CString objects, aka "Memory Allocation Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2008-0120 | Version: | 8 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Office PowerPoint Viewer 2003 |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
SAINT Exploits
| Description | Link |
|---|---|
| Microsoft PowerPoint Viewer picture index CString object integer overflow | More info here |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2008-08-19 | Name : Microsoft PowerPoint Could Allow Remote Code Execution Vulnerabilities (949785) File : nvt/secpod_ms08-051_900033.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 47406 | Microsoft PowerPoint Viewer Cstring Object Handling Memory Corruption |
| 47405 | Microsoft PowerPoint Viewer Picture Index Handling Memory Corruption |
| 47404 | Microsoft PowerPoint File List Value Handling Memory Corruption |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2017-09-21 | Microsoft Office PowerPoint Viewer memory allocation code execution attempt RuleID : 44069 - Revision : 2 - Type : FILE-OFFICE |
| 2017-09-21 | Microsoft Office PowerPoint Viewer memory allocation code execution attempt RuleID : 44068 - Revision : 2 - Type : FILE-OFFICE |
| 2017-09-19 | Powerpoint Viewer malformed msoDrawing property table buffer overflow attempt RuleID : 44032 - Revision : 2 - Type : FILE-OFFICE |
| 2017-09-19 | Powerpoint Viewer malformed msoDrawing property table buffer overflow attempt RuleID : 44031 - Revision : 2 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office PowerPoint Viewer memory allocation code execution attempt RuleID : 26710 - Revision : 3 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office PowerPoint Viewer memory allocation code execution attempt RuleID : 26709 - Revision : 3 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office PowerPoint Viewer memory allocation code execution attempt RuleID : 26708 - Revision : 4 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office PowerPoint Viewer memory allocation code execution attempt RuleID : 26707 - Revision : 4 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office PowerPoint Viewer memory allocation code execution attempt RuleID : 26706 - Revision : 3 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office PowerPoint TxMasterStyle10Atom atom numLevels buffer overflo... RuleID : 26330 - Revision : 3 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office PowerPoint Viewer memory allocation code execution attempt RuleID : 17310 - Revision : 13 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office PowerPoint TxMasterStyle10Atom atom numLevels buffer overflo... RuleID : 13971 - Revision : 19 - Type : FILE-OFFICE |
| 2014-01-10 | Powerpoint Viewer malformed msoDrawing property table buffer overflow attempt RuleID : 13969 - Revision : 13 - Type : FILE-OFFICE |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2010-10-20 | Name : An application installed on the remote Mac OS X host is affected by multiple ... File : macosx_ms_office_aug2008.nasl - Type : ACT_GATHER_INFO |
| 2008-08-13 | Name : Arbitrary code can be executed on the remote host through Microsoft PowerPoint. File : smb_nt_ms08-051.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:46:03 |
|
| 2014-01-19 21:30:14 |
|
| 2013-05-11 00:49:22 |
|
