NVD

Id
7967  
Name
CVE-2011-0976  
Description
Microsoft PowerPoint 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; and PowerPoint Viewer 2007 SP2 do not properly handle Office Art containers that have invalid records, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a PowerPoint document with a container that triggers certain access to an uninitialized object, aka "OfficeArt Atom RCE Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2011-02-10  
Modified Date
2011-10-04  
Seq
2011-0976  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
45165 7967 CVE-2011-0976 http://dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-microsoft  View
45166 7967 CVE-2011-0976 oval:org.mitre.oval:def:11978  View
45167 7967 CVE-2011-0976 MS11-022  View
45168 7967 CVE-2011-0976 20110207 ZDI-11-044: Microsoft PowerPoint 2007 OfficeArt Atom Remote Code Execution Vulnerability  View
45169 7967 CVE-2011-0976 1025340  View
45170 7967 CVE-2011-0976 TA11-102A  View
45171 7967 CVE-2011-0976 ADV-2011-0941  View
45172 7967 CVE-2011-0976 http://zerodayinitiative.com/advisories/ZDI-11-044/  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
31250 JVNDB-2011-001490 複数の Microsoft 製品における任意のコードを実行される脆弱性 複数の Microsoft 製品は、不正なレコードを持つ Office Art コンテナを適切に処理しないため、任意のコードを実行される、またはサービス運用妨害 (メモリ破損) 状態となる脆弱性が存在します。 CVE-2011-0976 48883 CVE-2011-0976 7967 9.3 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-001490.html 2011-02-10 2011-05-06 View