CVE CVE-2009-0556 Mappings

Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3, and PowerPoint in Microsoft Office 2004 for Mac, allows remote attackers to execute arbitrary code via a PowerPoint file with an OutlineTextRefAtom containing an an invalid index value that triggers memory corruption, as exploited in the wild in April 2009 by Exploit:Win32/Apptom.gen, aka "Memory Corruption Vulnerability."


Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2009-0556 n/a uncategorized T1203 Exploitation for Client Execution
CVE-2009-0556 n/a uncategorized T1204.002 Malicious File