CVE-2010-0033
Microsoft Office PowerPoint Viewer TextBytesAtom Record Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Stack-based buffer overflow in Microsoft Office PowerPoint 2003 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint Viewer TextBytesAtom Record Stack Overflow Vulnerability."
Desbordamiento de búfer basado en pila en Microsoft Office PowerPoint 2003 SP3, permite a atacantes remotos ejecutar código de su elección a través de un documento PowerPoint, también conocido como "PowerPoint Viewer TextBytesAtom Record Stack Overflow Vulnerability."
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office PowerPoint Viewer. User interaction is required to exploit this vulnerability in that the target must open a malicious presentation.
The specific flaw exists in the handling of TextBytesAtom records contained in a PPT file. Due to the lack of bounds checking on the size argument an unchecked memcpy() copies user data from the file to the stack, overflowing key exception structures. Exploitation of this vulnerability can lead to remote compromise of the affected system under the context of the currently logged in user.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2009-12-14 CVE Reserved
- 2010-02-09 CVE Published
- 2010-09-25 First Exploit
- 2024-06-29 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (5)
URL | Tag | Source |
---|---|---|
http://www.securitytracker.com/id?1023563 | Vdb Entry | |
http://www.us-cert.gov/cas/techalerts/TA10-040A.html | Third Party Advisory | |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7711 | Signature |
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/16665 | 2010-09-25 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-004 | 2018-10-12 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Microsoft Search vendor "Microsoft" | Powerpoint Search vendor "Microsoft" for product "Powerpoint" | 2003 Search vendor "Microsoft" for product "Powerpoint" and version "2003" | sp3 |
Affected
|