CVE-2010-0031

Microsoft Office PowerPoint - Remote Code Execution via Crafted PowerPoint Document

Title source: llm
STIX 2.1

Description

Array index error in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3, and PowerPoint in Office 2004 for Mac, allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint OEPlaceholderAtom 'placementId' Invalid Array Indexing Vulnerability."

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8081
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA10-040A.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1023563

Scores

EPSS 0.2122
EPSS Percentile 97.3%

Details

CWE
CWE-94
Status published
Products (3)
microsoft/office 2004
microsoft/powerpoint 2002 sp3
microsoft/powerpoint 2003 sp3
Published Feb 10, 2010
Tracked Since Feb 18, 2026