03 Apr 2009
10 Jun 2009
Microsoft Office 2000
This covers vulnerabilities where malicious people are able to gain system access and execute arbitrary code with the privileges of a local user.
A vulnerability has been reported in Microsoft PowerPoint, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an error when processing certain index values inside OutlineTextRefAtom atoms. This may result in access to an invalid object in memory when parsing a specially crafted PowerPoint file.
Successful exploitation allows execution of arbitrary code.
NOTE: According to Microsoft, the vulnerability is currently being actively exploited.
Microsoft Office PowerPoint 2000 SP3:
Microsoft Office PowerPoint 2002 SP3:
Microsoft Office PowerPoint 2003 SP3:
Microsoft Office 2004 for Mac:
Reported as a 0-day.
MS09-017 (KB957781, KB957784, KB957789, KB957790, KB967340, KB969615, KB969618, KB970059, KB969661):