CVE-2009-0556: Microsoft Office PowerPoint Code Injection Vulnerability.

Microsoft Office PowerPoint Code Injection Vulnerability. Microsoft Office PowerPoint contains a code injection vulnerability that allows remote attackers to execute arbitrary code via a PowerPoint file with an OutlineTextRefAtom containing an invalid index value that triggers memory corruption.

• CISA KEV-listed (remediation due 2026-01-28)
• EPSS 59.0% (98.3% percentile)

Browse the CVE database

Read the full analysis on IntelFusions