CVE-2010-0032Code Injection in Microsoft Powerpoint

CWE-94Code Injection3 documents3 sources
Severity
9.3CRITICALNVD
EPSS
52.4%
top 2.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Powerpoint
Timeline
PublishedFeb 10
Latest updateMay 2

Description

Use-after-free vulnerability in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "OEPlaceholderAtom Use After Free Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDmicrosoft/powerpoint2002, 2003+1

🔴Vulnerability Details

2
GHSA
GHSA-m327-jjcq-v72h: Use-after-free vulnerability in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Powe2022-05-02
CVEList
CVE-2010-0032: Use-after-free vulnerability in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Powe2010-02-10
CVE-2010-0032 — Code Injection in Microsoft Powerpoint | cvebase