CVE-2007-0913 - Unspecified vulnerability in Microsoft Powerpoint allows remote user-assisted attackers to execute a

CVE-2007-0913

Summary

Unspecified vulnerability in Microsoft Powerpoint allows remote user-assisted attackers to execute arbitrary code via unknown attack vectors, as exploited by Trojan.PPDropper.G. NOTE: as of 20070213, it is not clear whether this is the same issue as CVE-2006-5296, CVE-2006-4694, CVE-2006-3876, CVE-2006-3877, or older issues.

References

http://osvdb.org/35763
http://www.symantec.com/enterprise/security_response/writeup.jsp?docid=2007-021312-5133-99&tabid=2

Vulnerable Configurations

cpe:2.3:a:microsoft:powerpoint:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:powerpoint:*:*:*:*:*:*:*:*

CVSS

Base:	9.3 (as of 15-11-2008 - 06:42)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:M/Au:N/C:C/I:C/A:C

refmap via4

misc	http://www.symantec.com/enterprise/security_response/writeup.jsp?docid=2007-021312-5133-99&tabid=2
osvdb	35763

Last major update

15-11-2008 - 06:42

Published

14-02-2007 - 01:28

Last modified

15-11-2008 - 06:42