Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1455

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2008-1455
Last Modified 07 Mar 2011 10:07:07
Published 12 Aug 2008 08:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-1455

Summary

A "memory calculation error" in Microsoft Office PowerPoint 2000 SP3, 2002 SP3, 2003 SP2, and 2007 through SP1; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 through SP1; and Office 2004 for Mac allows remote attackers to execute arbitrary code via a PowerPoint file with crafted list values that trigger memory corruption, aka "Parsing Overflow Vulnerability."

Vulnerable Systems

Application

  • Microsoft Compatibility Pack Word Excel Powerpoint 2007

  • Microsoft Office 2000

  • Microsoft Office 2002

  • Microsoft Office 2003

  • Microsoft Office 2004

  • Microsoft Office 2007

  • Microsoft Office Powerpoint Viewer 2003


References

CERT - TA08-225A

MS - MS08-051

VUPEN - ADV-2008-2355

SECTRACK - 1020676

BID - 30579

SECUNIA - 31453

HP - SSRT080117

HP - HPSBST02360


Last Updated: 27 May 2016 10:47:28