CISA KEV 정보
| 취약점명 | Microsoft Office PowerPoint Code Injection Vulnerability |
|---|---|
| 설명 | Microsoft Office PowerPoint contains a code injection vulnerability that allows remote attackers to execute arbitrary code via a PowerPoint file with an OutlineTextRefAtom containing an invalid index value that triggers memory corruption. |
| 조치사항 | Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. |
| 랜섬웨어 캠페인 악용 | Unknown |
| CWE | CWE-94 |
| 등록일 (KEV) | 2026-01-07 |
| 조치 기한 | 2026-01-28 |
| 추가 참고 | https://learn.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-017 ; https://nvd.nist.gov/vuln/detail/CVE-2009-0556 |
NVD 상세 정보
CVSS v3.1: 8.8 HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HCVSS v2.0: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C설명: Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3, and PowerPoint in Microsoft Office 2004 for Mac, allows remote attackers to execute arbitrary code via a PowerPoint file with an OutlineTextRefAtom containing an an invalid index value that triggers memory corruption, as exploited in the wild in April 2009 by Exploit:Win32/Apptom.gen, aka "Memory Corruption Vulnerability."
CWE: CWE-94 | CWE-94
참조
- http://blogs.technet.com/mmpc/archive/2009/04/02/new-0-day-exploits-using-powerpoint-files.aspx [Vendor Advisory]
- http://blogs.technet.com/msrc/archive/2009/04/02/microsoft-security-advisory-969136.aspx [Vendor Advisory]
- http://blogs.technet.com/srd/archive/2009/04/02/investigating-the-new-powerpoint-issue.aspx [Vendor Advisory]
- http://osvdb.org/53182
- http://secunia.com/advisories/34572 [Vendor Advisory]
- http://www.kb.cert.org/vuls/id/627331 [US Government Resource]
- http://www.microsoft.com/technet/security/advisory/969136.mspx [Patch, Vendor Advisory]
- http://www.securityfocus.com/archive/1/503453/100/0/threaded
- http://www.securityfocus.com/bid/34351
- http://www.securitytracker.com/id?1021967
- http://www.us-cert.gov/cas/techalerts/TA09-132A.html [US Government Resource]
- http://www.vupen.com/english/advisories/2009/0915 [Vendor Advisory]
- http://www.vupen.com/english/advisories/2009/1290
- http://www.zerodayinitiative.com/advisories/ZDI-09-019
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-017
- ... 외 22건
This product uses the NVD API but is not endorsed or certified by the NVD.