VulDB: Microsoft Office up to 2008 Presentation File Parser buffer overflow
General
scipID: 4349
Affected: Microsoft Office up to 2008
Published: 05/10/2011
Risk: 
critical
Entry: 91.6% complete
Created: 05/19/2011
Updated: 09/03/2012
Summary
A vulnerability, which was classified as critical, has been found in Microsoft Office up to 2008. This issue affects an unknown function of the component Presentation File Parser. The manipulation with an unknown input leads to a buffer overflow vulnerability. Impacted is confidentiality, integrity, and availability.
The weakness was shared 05/10/2011 with Microsoft as MS11-036. The advisory is shared for download at microsoft.com. The identification of this vulnerability is CVE-2011-1269 since 03/04/2011. The attack may be initiated remotely. Neither technical details nor an exploit are publicly available.
The vulnerability was handled as a non-public zero-day exploit for at least 35 days. The vulnerability scanner Nessus provides a plugin with the ID 53859 (MS11-036: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (2545814)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Windows : Microsoft Bulletins, running in the context local and relying on port 139.
Applying the patch MS11-036 is able to eliminate this problem. The bugfix is ready for download at microsoft.com. A possible mitigation has been published 2 months after the disclosure of the vulnerability. The vulnerability is also documented in the vulnerability database at Secunia (SA44539).CVSS
Base Score: 6.0 (CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P) [?]
| Access Vector | Access Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Local | High | Multiple | None | None | None |
| Adjacent | Medium | Single | Partial | Partial | Partial |
| Network | Low | None | Complete | Complete | Complete |
CPE
- cpe:/a:microsoft:office:2008
Exploiting
Class: Buffer overflow
Local: No
Remote: Yes
Availability: No
Nessus ID: 53859
Nessus Name: MS11-036: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (2545814)
Nessus Family: Windows : Microsoft Bulletins
Nessus Context: local
Nessus Port: 139
Countermeasures
Recommended: Upgrade
Reaction Time: 35 days since reported
0-Day Time: 35 days since found
Exposure Time: 35 days since known
Patch: MS11-036
Timeline
03/04/2011 | CVE assigned
05/10/2011 | Advisory disclosed
05/10/2011 | Nessus plugin released
05/19/2011 | VulDB entry created
06/14/2011 | Countermeasure disclosed
09/03/2012 | VulDB entry updated
Sources
Advisory: MS11-036
Company: Microsoft
CVE: CVE-2011-1269 (mitre.org) (nist.org) (cvedetails.com)
Secunia: 44539
