N/A

PowerPoint in Microsoft Office 2003 does not properly handle a container object whose position value exceeds the record length, which allows user-assisted attackers to cause a denial of service (NULL dereference and application crash) via a crafted PowerPoint (.PPT) file, as demonstrated by Nanika.ppt, and a different vulnerability than CVE-2006-3435, CVE-2006-3876, CVE-2006-3877, and CVE-2006-4694. NOTE: the impact of this issue was originally claimed to be arbitrary code execution, but later analysis demonstrated that this was erroneous.

N/A

N/A

Microsoft PowerPoint 记录长度容器对象远程拒绝服务漏洞

Microsoft Office 2003的PowerPoint并未正确处理其位置值超出记录长度的容器对象，用户协助式攻击者可以通过精心编制的PowerPoint (.PPT)文件来引起拒绝服务(NULL解引用和应用程序崩溃)攻击，例如通过Nanika.ppt可以触发此漏洞。

N/A

N/A