Microsoft Powerpoint vulnerabilities
69 known vulnerabilities affecting microsoft/powerpoint.
Total CVEs
69
CISA KEV
4
actively exploited
Public exploits
10
Exploited in wild
3
Severity breakdown
CRITICAL24HIGH36MEDIUM8LOW1
Vulnerabilities
Page 3 of 4
CVE-2010-3141CRITICALCVSS 9.3PoCv20102010-08-27
CVE-2010-3141 [CRITICAL] CVE-2010-3141: Untrusted search path vulnerability in Microsoft PowerPoint 2010 allows local users, and possibly re
Untrusted search path vulnerability in Microsoft PowerPoint 2010 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse pptimpconv.dll that is located in the same folder as a .odp, .pot, .potm, .potx, .ppa, .pps, .ppsm, .ppsx, .ppt, .pptm, .pptx, .pwz, .sldm, or .sldx file.
nvd
CVE-2010-0032CRITICALCVSS 9.3v2002v20032010-02-10
CVE-2010-0032 [CRITICAL] CWE-94 CVE-2010-0032: Use-after-free vulnerability in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3 allows remote atta
Use-after-free vulnerability in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "OEPlaceholderAtom Use After Free Vulnerability."
nvd
CVE-2010-0029CRITICALCVSS 9.3v20022010-02-10
CVE-2010-0029 [CRITICAL] CWE-119 CVE-2010-0029: Buffer overflow in Microsoft Office PowerPoint 2002 SP3 allows remote attackers to execute arbitrary
Buffer overflow in Microsoft Office PowerPoint 2002 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint File Path Handling Buffer Overflow Vulnerability."
nvd
CVE-2010-0030CRITICALCVSS 9.3v2002v20032010-02-10
CVE-2010-0030 [CRITICAL] CWE-119 CVE-2010-0030: Heap-based buffer overflow in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3 allows remote attack
Heap-based buffer overflow in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint LinkedSlideAtom Heap Overflow Vulnerability."
nvd
CVE-2010-0033CRITICALCVSS 9.3PoCv20032010-02-10
CVE-2010-0033 [CRITICAL] CWE-119 CVE-2010-0033: Stack-based buffer overflow in Microsoft Office PowerPoint 2003 SP3 allows remote attackers to execu
Stack-based buffer overflow in Microsoft Office PowerPoint 2003 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint Viewer TextBytesAtom Record Stack Overflow Vulnerability."
nvd
CVE-2010-0034CRITICALCVSS 9.3v20032010-02-10
CVE-2010-0034 [CRITICAL] CWE-119 CVE-2010-0034: Stack-based buffer overflow in Microsoft Office PowerPoint 2003 SP3 allows remote attackers to execu
Stack-based buffer overflow in Microsoft Office PowerPoint 2003 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "Office PowerPoint Viewer TextCharsAtom Record Stack Overflow Vulnerability."
nvd
CVE-2010-0031CRITICALCVSS 9.3v2002v20032010-02-10
CVE-2010-0031 [CRITICAL] CWE-94 CVE-2010-0031: Array index error in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3, and PowerPoint in Office 200
Array index error in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3, and PowerPoint in Office 2004 for Mac, allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint OEPlaceholderAtom 'placementId' Invalid Array Indexing Vulnerability."
nvd
CVE-2009-0224CRITICALCVSS 9.3v2004v20082009-05-12
CVE-2009-0224 [CRITICAL] CWE-94 CVE-2009-0224: Microsoft Office PowerPoint 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; PowerPoint Viewer 20
Microsoft Office PowerPoint 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; PowerPoint Viewer 2003 and 2007 SP1 and SP2; PowerPoint in Microsoft Office 2004 for Mac and 2008 for Mac; Open XML File Format Converter for Mac; Microsoft Works 8.5 and 9.0; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 an
nvd
CVE-2009-0556HIGHCVSS 8.8KEVv2000v2002+1 more2009-04-03
CVE-2009-0556 [HIGH] CWE-94 CVE-2009-0556: Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3, and PowerPoint in Microsoft Office 200
Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3, and PowerPoint in Microsoft Office 2004 for Mac, allows remote attackers to execute arbitrary code via a PowerPoint file with an OutlineTextRefAtom containing an an invalid index value that triggers memory corruption, as exploited in the wild in April 2009 by Exploit:Win32/Apptom.gen, aka "Mem
nvd
CVE-2008-3068HIGHCVSS 7.5v2003v20072008-07-07
CVE-2008-3068 [HIGH] CVE-2008-3068: Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office
Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Revocation List (CRL) checks by using an arbitrary URL from a certificate embedded in a (1) S/MIME e-mail message or (2) signed document, which allows remote attackers to obtain reading times and IP addresses of recipients, and port-scan
nvd
CVE-2007-0671HIGHCVSS 8.8KEVv2000v2002+2 more2007-02-03
CVE-2007-0671 [HIGH] CVE-2007-0671: Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Of
Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted attackers to execute arbitrary code via unknown attack vectors, as demonstrated by Exploit-MSExcel.h in targeted zero-day attacks.
nvd
CVE-2006-5296MEDIUMCVSS 4.3PoCv20032006-10-16
CVE-2006-5296 [MEDIUM] CVE-2006-5296: PowerPoint in Microsoft Office 2003 does not properly handle a container object whose position value
PowerPoint in Microsoft Office 2003 does not properly handle a container object whose position value exceeds the record length, which allows user-assisted attackers to cause a denial of service (NULL dereference and application crash) via a crafted PowerPoint (.PPT) file, as demonstrated by Nanika.ppt, and a different vulnerability than CVE-2006-3435, CVE-200
nvd
CVE-2006-3877CRITICALCVSS 9.3v2000v2002+2 more2006-10-10
CVE-2006-3877 [CRITICAL] CVE-2006-3877: Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2
Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via an unspecified "crafted file," a different vulnerability than CVE-2006-3435, CVE-2006-4694, and CVE-2006-3876.
nvd
CVE-2006-3449HIGHCVSS 7.5v2000v2001+2 more2006-08-09
CVE-2006-3449 [HIGH] CVE-2006-3449: Unspecified vulnerability in Microsoft PowerPoint 2000 through 2003, possibly a buffer overflow, all
Unspecified vulnerability in Microsoft PowerPoint 2000 through 2003, possibly a buffer overflow, allows user-assisted remote attackers to execute arbitrary commands via a malformed record in the BIFF file format used in a PPT file, a different issue than CVE-2006-1540, aka "Microsoft PowerPoint Malformed Record Vulnerability."
nvd
CVE-2006-3660HIGHCVSS 7.6PoCv20032006-07-18
CVE-2006-3660 [HIGH] CVE-2006-3660: Unspecified vulnerability in Microsoft PowerPoint 2003 has unknown impact and user-assisted attack v
Unspecified vulnerability in Microsoft PowerPoint 2003 has unknown impact and user-assisted attack vectors related to powerpnt.exe. NOTE: due to the lack of available details as of 20060717, it is unclear how this is related to CVE-2006-3655, CVE-2006-3656, and CVE-2006-3590, although it is possible that they are all different.
nvd
CVE-2006-3655MEDIUMCVSS 5.1PoCv20032006-07-18
CVE-2006-3655 [MEDIUM] CVE-2006-3655: Unspecified vulnerability in mso.dll in Microsoft PowerPoint 2003 allows user-assisted attackers to
Unspecified vulnerability in mso.dll in Microsoft PowerPoint 2003 allows user-assisted attackers to execute arbitrary code via a crafted PowerPoint file. NOTE: due to the lack of available details as of 20060717, it is unclear how this is related to CVE-2006-3656, CVE-2006-3660, and CVE-2006-3590, although it is possible that they are all different.
nvd
CVE-2006-3656LOWCVSS 2.6PoCv20032006-07-18
CVE-2006-3656 [LOW] CVE-2006-3656: Unspecified vulnerability in Microsoft PowerPoint 2003 allows user-assisted attackers to cause memor
Unspecified vulnerability in Microsoft PowerPoint 2003 allows user-assisted attackers to cause memory corruption via a crafted PowerPoint file, which triggers the corruption when the file is closed. NOTE: due to the lack of available details as of 20060717, it is unclear how this is related to CVE-2006-3655, CVE-2006-3660, and CVE-2006-3590, although it is possi
nvd
CVE-2006-3590MEDIUMCVSS 5.1v2000v2002+1 more2006-07-14
CVE-2006-3590 [MEDIUM] CWE-94 CVE-2006-3590: mso.dll, as used by Microsoft PowerPoint 2000 through 2003, allows user-assisted attackers to execut
mso.dll, as used by Microsoft PowerPoint 2000 through 2003, allows user-assisted attackers to execute arbitrary commands via a malformed shape container in a PPT file that leads to memory corruption, as exploited by Trojan.PPDropper.B, a different issue than CVE-2006-1540 and CVE-2006-3493.
nvd
CVE-2006-0022HIGHCVSS 7.6v2000v2002+2 more2006-06-13
CVE-2006-0022 [HIGH] CVE-2006-0022: Unspecified vulnerability in Microsoft PowerPoint in Microsoft Office 2000 SP3, Office XP SP3, Offic
Unspecified vulnerability in Microsoft PowerPoint in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP1 and SP2, Office 2004 for Mac, and v. X for Mac allows user-assisted attackers to execute arbitrary code via a PowerPoint document with a malformed record, which triggers memory corruption.
nvd
CVE-2004-0848HIGHCVSS 7.5v20022005-02-08
CVE-2004-0848 [HIGH] CVE-2004-0848: Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link
Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2) "%0a" (carriage return) in .rtf filenames.
nvd