Beware you can be hacked just by PowerPoint

powerpoint exploited

According to latest security updates from Microsoft, your system can be hacked by just taking advantage of Vulnerability in Microsoft OLE .

The OLE refers to the Embedded content in the PowerPoint or excel, so if you are planning to download some PowerPoint from strangers beware it can be the one to hack your system.

How does it work in PowerPoint ?

This Vulnerability allows the remote code execution so if someone specially designed an OLE object and embed it into PowerPoint presentation, he can gain the same rights over the machine as of current user.

What should i know ?

  1. Since Microsoft hasn’t know about it for a long time, it can be widely spread till now.
  2. As of now, Microsoft is still investigating the issue and yet yet to decide about security patch release.
  3. Apart from Windows Server 2003, all the systems are affected. here is the list released by Microsoft.
    • Windows Vista Service Pack 2
    • Windows Vista x64 Edition Service Pack 2
    • Windows Server 2008 for 32-bit Systems Service Pack 2
    • Windows Server 2008 for x64-based Systems Service Pack 2
    • Windows Server 2008 for Itanium-based Systems Service Pack 2
    • Windows 7 for 32-bit Systems Service Pack 1
    • Windows 7 for x64-based Systems Service Pack 1
    • Windows Server 2008 R2 for x64-based Systems Service Pack 1
    • Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
    • Windows 8 for 32-bit Systems
    • Windows 8 for x64-based Systems
    • Windows 8.1 for 32-bit Systems
    • Windows 8.1 for x64-based Systems
    • Windows Server 2012
    • Windows Server 2012 R2
    • Windows RT
    • Windows RT 8.1

What should i do Now ?

you can follow the below guidelines.

  1. if your system is windows vista or above, it has User Account Control (UAC) enabled, so it displays a consent prompt or an elevation prompt, depending on the privileges of the current user. So make sure you got file from same point, before allowing it.
  2. Don’t open downloaded/received file from strangers.
  3. if you receive any security update regarding this, make sure you update your system.

Add a Comment

Your email address will not be published. Required fields are marked *