CVE-2010-0031
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2010-0031
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Array index error in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3, and PowerPoint in Office 2004 for Mac, allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint OEPlaceholderAtom 'placementId' Invalid Array Indexing Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft PowerPoint OEPlaceholderAtom记录无效数组索引漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft PowerPoint是Microsoft Office套件中的文档演示工具。 PowerPoint处理特制PPT文件OEPlaceholderAtom记录中的placementId字段值时存在数组索引漏洞,成功利用此漏洞的攻击者可完全控制受影响的系统。 OEPlaceholderAtom记录类型用于为幻灯片的图片、文本等对象创建占位符。如果用户提供的值大于数组大小,就可以用固定的值破坏数组边界外的栈内存。通过覆盖关键结构(如保存的返回地址),就可以导致执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2010-0031
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2010-0031
Please Login to view more intelligence information
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-004vendor-advisoryx_refsource_MS
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8081vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2010-0031
Same Patch Batch · n/a · 2010-02-10 · 36 CVEs total
| CVE-2009-4634 | Ffmpeg 多个整数溢出漏洞 | |
| CVE-2010-0241 | Microsoft Windows ICMPv6路由信息远程代码执行漏洞 | |
| CVE-2010-0242 | Microsoft Windows TCP/IP栈选择性应答远程拒绝服务漏洞 | |
| CVE-2010-0243 | Microsoft Office OfficeArtSpgr容器指针覆盖缓冲区错误漏洞 | |
| CVE-2010-0250 | Microsoft DirectX DirectShow AVI文件堆缓冲区溢出漏洞 | |
| CVE-2010-0252 | Microsoft Data Analyzer ActiveX控件栈破坏漏洞 | |
| CVE-2009-4631 | Ffmpeg VP3 decoder Off-by-one溢出漏洞 | |
| CVE-2009-4632 | FFmpeg 'oggparsevorbis.c' 指针算法拒绝服务攻击漏洞 | |
| CVE-2009-4633 | Ffmpeg 'vorbis_dec.c' 拒绝服务攻击或代码执行漏洞 | |
| CVE-2010-0240 | Microsoft Windows头MDL碎片远程代码执行漏洞 | |
| CVE-2009-4635 | Ffmpeg MOV存储器拒绝服务漏洞 | |
| CVE-2009-4636 | Ffmpeg 无限循环拒绝服务漏洞 | |
| CVE-2009-4637 | Ffmpeg 未明拒绝服务攻击漏洞 | |
| CVE-2009-4638 | FFmpeg 未明整数溢出漏洞 | |
| CVE-2009-4639 | Ffmpeg AVI 分路器 拒绝服务攻击漏洞 | |
| CVE-2009-4640 | Ffmpeg‘vorbis_dec.c’拒绝服务和代码执行漏洞 | |
| CVE-2010-0394 | Nanosleep Trac Git插件远程命令注入漏洞 | |
| CVE-2010-0564 | Trendmicro OfficeScan TMUFE缓冲区溢出漏洞 | |
| CVE-2010-0030 | Microsoft PowerPoint LinkedSlideAtom堆溢出漏洞 | |
| CVE-2010-0017 | Microsoft Windows SMB客户端实现竞争条件漏洞 |
Showing top 20 of 36 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8261
Squirrel sqobject.cpp Load heap-based overflow - CVE-2026-8258
Squirrel sqstdstring.cpp validate_format stack-based overflo - CVE-2026-8252
Open5GS SMF smf_nsmf_handle_create_data_in_hsmf null pointer - CVE-2026-8251
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8250
Open5GS SMF n4-build.c smf_n4_build_qos_flow_to_modify_list
V. Comments for CVE-2010-0031
No comments yet