Memory Calculation Flaw in Microsoft Office Suite Products Exposes Users
CVE-2008-1455

Currently unrated

Key Information:

Vendor: Microsoft
Status: Office; Compatibility Pack Word Excel Powerpoint; Office Powerpoint Viewer
Vendor: CVE Published:; 13 August 2008

Summary

A memory calculation error present in various versions of Microsoft Office, including PowerPoint, allows remote attackers to exploit specially crafted PowerPoint files. This exploitation can lead to memory corruption, enabling arbitrary code execution on the user's device. The vulnerability affects multiple versions of Microsoft Office PowerPoint and the Office Compatibility Pack, posing significant risks to users who handle untrusted PowerPoint presentations.

References

http://www.us-cert.gov/cas/techalerts/TA08-225A.html

third-party-advisoryx_refsource_CERT

http://marc.info/?l=bugtraq&m=121915960406986&w=2

vendor-advisoryx_refsource_HP

http://marc.info/?l=bugtraq&m=121915960406986&w=2

vendor-advisoryx_refsource_HP

EPSS Score

63% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 13, 2008
Vulnerability Reserved
Mar 21, 2008