1. Home
  2. CVE Database
  3. CVE-2008-1455
MEDIUM · 6.8

CVE-2008-1455

A "memory calculation error" in Microsoft Office PowerPoint 2000 SP3, 2002 SP3, 2003 SP2, and 2007 through SP1; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 through SP1; and Office 2...

Vulnerability Description

A "memory calculation error" in Microsoft Office PowerPoint 2000 SP3, 2002 SP3, 2003 SP2, and 2007 through SP1; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 through SP1; and Office 2004 for Mac allows remote attackers to execute arbitrary code via a PowerPoint file with crafted list values that trigger memory corruption, aka "Parsing Overflow Vulnerability."

CVSS Score

6.8

MEDIUM

AV:N/AC:M/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
MicrosoftCompatibility Pack Word Excel Powerpoint2007
MicrosoftOffice2000
MicrosoftOffice Powerpoint Viewer2003

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2008-1455?

CVE-2008-1455 is a vulnerability with a CVSS score of 6.8 (MEDIUM). A "memory calculation error" in Microsoft Office PowerPoint 2000 SP3, 2002 SP3, 2003 SP2, and 2007 through SP1; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 through SP1; and Office 2...

How severe is CVE-2008-1455?

CVE-2008-1455 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-1455?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Compatibility Pack Word Excel Powerpoint, Microsoft Office, Microsoft Office Powerpoint Viewer.