Update Protection against Microsoft Office PowerPoint OEPlaceholderAtom Arbitrary Array Indexing Vulnerabilities (MS10-004)
| Check Point Reference: | CPAI-2010-027 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | Microsoft Security Bulletin MS10-004 | |
| Industry Reference(s): | CVE-2010-0031 CVE-2010-0032 |
|
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Microsoft Office PowerPoint 2002 SP3 Microsoft Office PowerPoint 2003 SP3 Microsoft Office 2004 for Mac | ||
| Vulnerability Description Multiple remote code execution vulnerabilities have been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit these issues via a malformed PowerPoint file. Successful exploitation of these vulnerabilities may allow execution of arbitrary code on a target system. |
||
|
Update/Patch Available Apply patches: Microsoft Security Bulletin MS10-004 |
|
|
Vulnerability Details The vulnerabilities are due to an invalid array indexing and to a use after free error in Microsoft PowerPoint OEPlaceholderAtom record when processing malicious PowerPoint documents. A remote attacker could trigger these flaws by convincing a victim to open a specially crafted PowerPoint file. Successful exploitation of this issue may allow execution of arbitrary code on a vulnerable system. |
Protection Overview
This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
In order for the protection to be activated, update your Security Gateway/VPN-1 product to the latest IPS/SmartDefense update. For information on how to update IPS/SmartDefense, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.