cve-2011-1270

About this tag
CVE-2011-1270 is a vulnerability addressed in Microsoft Security Bulletin MS11-036, which resolves two privately reported vulnerabilities in Microsoft PowerPoint. This vulnerability could allow remote code execution if a user opens a specially crafted PowerPoint file. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. Users with fewer user rights on the system could be less impacted than those with administrative rights. The bulletin recommends installing and configuring Office File Validation (OFV) to prevent the opening of suspicious files, which blocks the attack vectors for exploiting this vulnerability. The update is rated Important and applies to various versions of Microsoft Office.

  1. MS11-036 - Important : Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (25

    Severity Rating: Important Revision Note: V1.2 (June 14, 2011): Announced that the updates for Microsoft Office for Mac, which were not available when the bulletin was originally published, are now available in bulletin MS11-045. Also, for both vulnerabilities addressed by this...
    • News
    • Thread
    • attack vector bulletin cve-2011-1269 cve-2011-1270 exploitation file validation important malware microsoft microsoft office patch powerpoint registry remote code execution security update user rights vulnerability workaround
    • Replies: 0
    • Forum: Security Alerts

  2. MS11-036 - Important: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (254

    Bulletin Severity Rating:Important - This security update resolves two privately reported vulnerabilities in Microsoft PowerPoint. The vulnerabilities could allow remote code execution if a user opens a specially crafted PowerPoint file. An attacker who successfully exploited either of these...
    • News
    • Thread
    • attack vector cve-2011-1269 cve-2011-1270 exploitation file validation microsoft powerpoint remote code execution security update user rights vulnerability
    • Replies: 0
    • Forum: Security Alerts

  3. MS11-036 - Important: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (254

    Severity Rating: Important - Revision Note: V1.0 (May 10, 2011): Bulletin published.Summary: This security update resolves two privately reported vulnerabilities in Microsoft PowerPoint. The vulnerabilities could allow remote code execution if a user opens a specially crafted PowerPoint file. An...
    • News
    • Thread
    • attack vector cve-2011-1269 cve-2011-1270 exploitation file validation important microsoft office powerpoint remote code execution revision note security update user rights vulnerability
    • Replies: 0
    • Forum: Security Alerts