PowerPoint zero-day vulnerability (969136) – SANS Internet Storm Center

Friday, April 03, 2009 9:15 AM cmosby

PowerPoint zero-day vulnerability (969136) – SANS Internet Storm Center

PowerPoint zero-day vulnerability (969136)

Published: 2009-04-03,
Last Updated: 2009-04-03 13:43:16 UTC
by Lenny Zeltser (Version: 1)

0 comment(s) digg_url = 'http://isc.sans.org/diary.html?storyid=6115&rss'; digg_title = 'PowerPoint zero-day vulnerability (969136)'; digg_skin='compact'; digg_topic = 'security';

acebook

witter

Several ISC readers shared with us a link to Microsoft's advisory 969136, which describes a zero-day vulnerability in PowerPoint.

You can also find the description of the exploit observed in the wild on the Microsoft Malware Protection Center blog, and additional technical details on the Microsoft Security Research & Defense blog. Kudos to Microsoft for being so transparent about the incidents! (Thanks for the links, Juha-Matti.)

The CVE placeholder for this vulnerability is CVE-2009-0556 (not live as of this writing).

If you have observed the exploit in the wild and can share the details with us, please let us know.

-- Lenny

Lenny Zeltser - Security Consulting

Lenny teaches malware analysis at SANS Institute. You're welcome to follow him on Twitter. You can track new Internet Storm Center diaries by following ISC on Twitter.

Filed under: Patch Management, Microsoft Office, Spam\Phishing, Configuration Management, ConfigMgr, Software Vulnerabilites

Comments

No Comments

Chris Mosby at myITforum.com

Search

Tags

News

Unique Visitors

Navigation

Archives

Microsoft Links

SMS Links

Great Blogs

My Links

Security Links

Anti-Virus Links

Things I Have Done or I Am Involved In

Published Works

PowerPoint zero-day vulnerability (969136) – SANS Internet Storm Center

Comments