- home
- reviews
- news
- downloads
- cnet tv
HOLIDAY HELP DESK: Broadcasting live at 1:00 p.m., PT
- log in
- join CNET
- welcome,
- my profile
- log out

Hardware

Software & services

Networking & communications

Buying guides

Rob Vamosi's
award-winning
column on Internet threats and how to counter them
Delivered Mondays

All free newsletters

CNET Security Center: Your complete source of antivirus and Internet security information.

Unspecified vulnerability in Microsoft PowerPoint 2000

By Robert Vamosi (September 29, 2006)

QUICK FACTS

Name: Unspecified vulnerability in Microsoft PowerPoint 2000

Date first reported: 09/27/06

Vulnerable software: Microsoft Office 2000, XP, and 2003, specifically PowerPoint 2000

What it does: Allows execution of remote code via specially constructed PPT file.

Recommendations: Open suspect files in Microsoft PowerPoint Viewer 2003.

Exploit code available: Yes

Vendor patch available: Yes

5
out of 10

INTERNET THREAT RATING
How we rate

There is an unspecified vulnerability within Microsoft Office PowerPoint 2000. To become infected, however, a user must open a specially crafted PowerPoint file (PPT). To guard against infection, open suspect files in the free Microsoft PowerPoint Viewer 2003 instead. Malware such as Exploit:Win32/Controlppt.W, Exploit:Win32/Controlppt.X, and Exploit-PPT.d/Trojan.PPDropper.F take advantage of this PowerPoint flaw.

Additional resources:

Vendor Patch Information: MS06-058
US-CERT Vulnerability Note: VU#231204
FrSIRT: 3794

Reviews & advice: Site map; Editorial policies; Meet the editors; How we test; Forums; Internet speed test

Popular topics: Apple iPhone; Apple iPod; Cell phones; Dell; GPS; LCD TV

CNET sites: CNET Site map; CNET TV; Downloads; News; Reviews; Shopper.com

More information: Newsletters; CNET Mobile; Customer Help Center; RSS; CNET Widgets; About CNET