Signature Detail
Short Name |
HTTP:STC:DL:PPT-UNK-ANI |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsoft Powerpoint Unknown Animation Node Remote Code Execution |
Release Date |
2010/11/08 |
Update Number |
1811 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Microsoft Powerpoint Unknown Animation Node Remote Code Execution
This signature detects attempts to exploit a known vulnerability in Microsoft PowerPoint. A successful attack can result in arbitrary code execution on the user's computer.
Extended Description
Microsoft PowerPoint is prone to a remote heap-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code with user-level privileges, facilitating the complete compromise of an affected computer. Failed exploit attempts will result in a denial-of-service condition.
Affected Products
- Microsoft Office 2003 SP3
- Microsoft Office 2004 for Mac
- Microsoft Office XP SP3
- Microsoft PowerPoint 2002 SP1
- Microsoft PowerPoint 2002 SP2
- Microsoft PowerPoint 2002 SP3
- Microsoft PowerPoint 2002
- Microsoft PowerPoint 2003 SP1
- Microsoft PowerPoint 2003 SP2
- Microsoft PowerPoint 2003 SP3
- Microsoft PowerPoint 2003
- Microsoft PowerPoint 2004 for Mac
- Microsoft PowerPoint Viewer SP2
References
- BugTraq: 44628
- CVE: CVE-2010-2573