Oval Definition:oval:org.mitre.oval:def:5555
Revision Date:2014-06-30Version:17
Title:Parsing Overflow Vulnerability
Description:A "memory calculation error" in Microsoft Office PowerPoint 2000 SP3, 2002 SP3, 2003 SP2, and 2007 through SP1; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 through SP1; and Office 2004 for Mac allows remote attackers to execute arbitrary code via a PowerPoint file with crafted list values that trigger memory corruption, aka "Parsing Overflow Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2008-1455
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Microsoft Office Compatibility Pack
Microsoft Office PowerPoint 2000
Microsoft Office PowerPoint 2002
Microsoft Office PowerPoint 2003
Microsoft Office PowerPoint 2007
Definition Synopsis
  • PowerPoint 2000
  • Microsoft PowerPoint 2000 is installed
  • AND the version of powerpnt.exe is less than 9.0.0.8969
  • OR PowerPoint 2002
  • Microsoft PowerPoint 2002 is installed
  • AND the version of powerpnt.exe is less than 10.0.6842.0
  • OR PowerPoint 2003
  • Microsoft PowerPoint 2003 is installed
  • AND the version of powerpnt.exe is less than 11.0.8227.0
  • OR PowerPoint 2007
  • Microsoft PowerPoint 2007 is installed
  • AND the version of powerpnt.exe is less than 12.0.6300.5000
  • OR Office Compatibility Pack 2007
  • Microsoft Office Compatibility Pack is installed
  • AND the version of pptcnv.dll is less than 12.0.6320.5000
    • BACK