9.3

CVE-2009-0556

Warnung
Medienbericht
Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3, and PowerPoint in Microsoft Office 2004 for Mac, allows remote attackers to execute arbitrary code via a PowerPoint file with an OutlineTextRefAtom containing an an invalid index value that triggers memory corruption, as exploited in the wild in April 2009 by Exploit:Win32/Apptom.gen, aka "Memory Corruption Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftOffice Powerpoint Version2004
MicrosoftPowerpoint Version2000 Updatesp3
MicrosoftPowerpoint Version2002 Updatesp3
MicrosoftPowerpoint Version2003 Updatesp3

07.01.2026: CISA Known Exploited Vulnerabilities (KEV) Catalog

Microsoft Office PowerPoint Code Injection Vulnerability

Schwachstelle

Microsoft Office PowerPoint contains a code injection vulnerability that allows remote attackers to execute arbitrary code via a PowerPoint file with an OutlineTextRefAtom containing an invalid index value that triggers memory corruption.

Beschreibung

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Erforderliche Maßnahmen
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 67.54% 0.992
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 2.8 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
VulnDex Intel
Media Report
08.01.2026 10:08
http://blogs.technet.com/mmpc/archive/2009/04/02/new-0-day-exploits-using-powerpoint-files.aspx
Vendor Advisory
http://blogs.technet.com/msrc/archive/2009/04/02/microsoft-security-advisory-969136.aspx
Vendor Advisory
http://blogs.technet.com/srd/archive/2009/04/02/investigating-the-new-powerpoint-issue.aspx
Vendor Advisory
http://osvdb.org/53182
Broken Link
http://secunia.com/advisories/34572
Vendor Advisory
http://www.kb.cert.org/vuls/id/627331
US Government Resource
http://www.microsoft.com/technet/security/advisory/969136.mspx
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/503453/100/0/threaded
Broken Link
http://www.securityfocus.com/bid/34351
Broken Link
http://www.securitytracker.com/id?1021967
Broken Link
http://www.us-cert.gov/cas/techalerts/TA09-132A.html
US Government Resource
http://www.vupen.com/english/advisories/2009/0915
Vendor Advisory
http://www.vupen.com/english/advisories/2009/1290
Broken Link
http://www.zerodayinitiative.com/advisories/ZDI-09-019
Third Party Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-017
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/49632
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6204
Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6279
Broken Link
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2009-0556
US Government Resource