Another hole found in PowerPoint

Proof-of-concept exploit shows further bug in slideshow software

Microsoft has issued an alert over a new potential zero-day exploit in its PowerPoint presentation software. The exploit is only a proof of concept and is as yet not thought to be in use by attackers.

The new bug comes just days after the monthly Patch Tuesday updates, one of which covered a previous hole in PowerPoint. It is believed to affect only the Office 2003 version of PowerPoint, and may result in remote code execution.

Microsoft released news of the vulnerability on its security blog. Alerts have also been issued by US-CERT and by Secunia, which has rated the problem as 'highly critical'.

Posted on 19 October 2006 by Virus Bulletin

 Tags

twitter.png
fb.png
linkedin.png
googleplus.png
reddit.png

 

Latest posts:

VB2015 paper: Sizing cybercrime: incidents and accidents, hints and allegations

Cybercrime is big. But how big is it really? In a paper presented at VB2015 and together with the presentation video published on our website today, ESET researcher Stephen Cobb looks at previous studies that attempt the size of cybercrime and asks…

Throwback Thursday: The Thin Blue Line

This Throwback Thursday, VB heads back to 1994 when UK Fraud Squad detectives started making inroads into the most puzzling 'Whodunnit' since the Great Train Robbery. Had an outbreak of computer crime swept Britain? No, it was all part of a police…

Welcome to virusbulletin.com

Almost 20 years after Virus Bulletin revealed its first site on the "world wide web", we've redesigned our whole website. And we have a new domain as well.

VB2015 video: TurlaSat: The Fault in our Stars

In a presentation at VB2015 in Prague, Kaspersky Lab researcher Kurt Baumgartner talked about Turla's extraplanetary activities: the malware used (and abused) satellite Internet connections for command and control communication.

Security vendors should embrace those hunting bugs in their products

When interviewed by the Risky Business podcast last week, VB Editor Martijn Grooten talked about the security of security products and said that many vendors are embracing the work done by Tavis Ormandy and others - as they should.