Microsoft OLE Remote Code Execution CVE-2014-6352

October 22, 2014

Microsoft has released a security advisory related to CVE-2014-6352 and Dell Sonicwall Research team has researched this vulnerability and released GAV signatures for it.

This vulnerability can be exploited through a specially crafted Microsoft Office file that contains an OLE object. A successful attack would result in remote code execution in the security context of the current user.

Following is the signature set which protects users against this attack.

  • GAV:17321 Malformed.pps.OT.1
  • GAV:36010 Malformed.pps.OT.2
  • GAV:36017 Malformed.pps.OT.3