Microsoft Warns of PowerPoint Attack

narramissic writes to let us know about yet another PowerPoint flaw, this one affecting PowerPoint 2000, 2002, and 2003, soon after Microsoft issued a record number of patches to fix numerous Office vulnerabilities (among others). The new problem came to light in a blog posting by Microsoft Security Program Manager Alexandra Huft, but the coverage at ITWorld has more detail. Huft writes, "We've been made aware of proof of concept code published publicly affecting Microsoft Office 2003 PowerPoint," and goes on to say that Microsoft is not aware of any attacks that exploit the bug.

Good.

I don't use PowerPoint. When I go to a meeting, which is often, I immediately leave the room if someone decides to bore me with stupid phrases in 12-centimetre type. I am an intelligent man and I demand an intelligent medium by which to be educated.

Re:Good.

Do you storm out and tell them they are all idiots for using a presentation software package to make a presentation and run to your desk to be first post on Slashdot?

Re:Good.

[cryfreedomlove]

Really? You just walk out? Where do you work? What's your position in the company?

Re:Good.

[theskipper]

Joe, is that you?

"Bossman" Steve here.

Quit whining on slashdot and get back in the meeting immediately .

Re:Good.

[sharkey]

What's your position in the company?

Waitress?

Re:Good.

In soviet Russia, you attack powerpoint!

Re:Good.

[TobyRush]

I don't use PowerPoint. When I go to a meeting, which is often, I immediately leave the room if someone decides to bore me with stupid phrases in 12-centimetre type.

To be fair, that's not PowerPoint's fault; it's a lack of presentation skill that seems to pervade the business culture today. If I am talking finances and I have a $2000 laptop and a $4500 projector displaying this on the screen:

Finances
- income
- spending

...then it doesn't matter what software I'm using, I'm wasting resources. PowerPoint has a lot of functionality that can be used to enhance presentations but most people don't use it. So they could really just use a word processor or slideshow program to do practically the same thing.

If you want bash PowerPoint (and I realize that wasn't necessarily the parent's goal), try this: the interface STINKS. I haven't used OpenOffice or StarOffice, but if they are trying to emulate PowerPoint's interface, then I won't bother.

<fanboi>I'm a Mac user and Keynote is much, MUCH more elegant to use... and can even import and export PowerPoint files.</fanboi>

Re:Good.

He's the usher.

Re:Good.

[Tim+C]

I am an intelligent man

But apparently not intelligent enough to not needlessly antagonise the people you have to work with...

Re:Good.

[finity]

Wrong. Clearly you don't understand how the Soviet Russia jokes are formatted. In this post, the "Anonymous Coward" is attacking Powerpoint. Therefore, you need to say something like...

"In Soviet Russia, Powerpoint attacks you!"

Try again

Re:Good.

[aplusjimages]

I am an intelligent man and I demand an intelligent medium by which to be educated.

What does that even mean? I suppose when you run a meeting you put everything together in a video presentation using Macromedia Director that link to sources. After the meeting you give everyone a CD copy so they can view it at their desk. Sure it takes you a month and a budget to get your 15 minute presentation together, but damn its so intelligent.

Re:Good.

[The+Great+Pretender]

Interesting. So as powerpoint is the pretty much the standard for scientific conferences (or at least the many that I go to each year and I assume, but cannot comment by experience, in other disciplines) I assume you're talking about a business meetings. Most business meetings I have been to use hard reports or powerpoint. You may see here that I'm a little confused as to what you business is. Of course you may work for a company that is enlightened enough to use something other than distro, but then on the surface most other presentation software is similar to powerpoint (perhaps without the recent attack capability - must have been that last upgrade). I don't know dude, you got me stumped here are you the janitor at a daycare center?

Re:Good.

[BeeBeard]

Try again

Don't encourage them! ;-)

Re:Good.

I don't recall Socrates needing any sort of techno-crap to teach men.

In my meetings there's a dry-erase board and twelve markers of four colors. All mobile phones, BlackBerries, laptops, desktops, and digital wristwatches are checked at the door. Paper and pencil may be used to take notes. I'm not aware of any complaints.

Re:Good.

No, he got it. PowerPoint attacked that "Anonymous Coward". Enough so that he left meetings. So, in Soviet Russia where all things are the opposite, the AC attacks PowerPoint.

Re:Good.

[ehrichweiss]

Not such a bad concept if one considers that a couple years ago there was an article about how PowerPoint makes you stupid and they had proof: there was apparently a lot of information in a presentation on the subject of how the Space Shuttle could have one of its tiles broken and that could cause a major malfunction. No one understood it because the presentation distracted from the information at hand and so the Shuttle was launched without this being taken into account.

Re:Good.

[LinuxIsRetarded]

Janitor. He comes in, looks at the screen, empties the trash, and immediately leave the room.

Re:Good.

Saying you don't like PowerPoint is a little like saying you don't like TV or film, or books for that matter. It's the content that counts. PowerPoint is neither good nor bad - it's a pen, it's keyboard.

BTW how can a medium be intelligent? At least your less intelligent collegues have figured out how to get you out of the room.

Re:Good.

[Delecron]

Of course you do, they don't let janitors clean during mid-management meetings.... On a side note, I see all these "responses" Microsoft has to Zero Day exploits from other people proof of concepts. What about what MS does to proactively find these holes? I would really love to see the ratio of what they find vs. what is found by others.

Re:Good.

[cheater512]

Fyi OpenOffice/StarOffice doesnt try to mimmick the interface.

Just yesterday I was trying to make a basic UML diagram in OpenOffice.
I was delighted when I found out that it is far simpler than doing the same thing in Word.
It was very different to how Word does it however and I had to figure out how the tools work.

Re:Good.

[cb8100]

Actually, the coward had it right.

The story is about a PowerPoint attack (PowerPoint attack you!). So, if we reverse things ala Soviet Russia, we get "You attack PowerPoint."

Re:Good.

I immediately leave the room if someone decides to bore me with stupid phrases in 12-centimetre type.

You obviously don't consult. Or don't have many customers with that attitude.

I am an intelligent man

You assume quite a bit.

Re:Good.

[Y0tsuya]

I am an intelligent man and I demand an intelligent medium by which to be educated. You get your education from Powerpoint slides? Where did you go to school, DeVry's? Plus that sentence above reminds me of a pouting 1st grader who insists that he's a "Big Boy" now.

Re:Good.

[ericlondaits]

Doing UML diagrams in OpenOffice OR Word makes baby jesus cry.

Re:Good.

[WilliamSChips]

UML diagrams make baby jesus cry.

Re:Good.

[cheater512]

I know what you mean. Stupid assignments.

Re:Good.

Who gives a fuck about that little shit?

Re:Good.

I used to send my daily server status to my boss in a PowerPoint presentation, when that got a little boring I started doing it in Spanish (http://www.freetranslations.com). When I got real bored I did it in Norwegian which he doesn't actually speak.
I used the stupidest stock Powerpoint clipart I could find. After about three months he decided he didn't need a daily status if everything was OK.

Re:Good.

[Skater]

Edward Tufte is the person in question.

He does a great lecture on information presentation. Definitely worth seeing, especially if you can get your employer to pay for it like I did.

Unfortunately, my employer has a "Standard PowerPoint Template That We Must Use For Official Presentations" that pretty much destroys everything Tufte taught us in favor of a standard look for presentations that... meh, I'm ranting.

Re:Good.

[finity]

Damn. I love how this has generated a discussion...

Re:Good.

No complaints? Except that you are lying... I'd complain about that. Digital wristwatches "checked at the door" my ass. Who would bring a desktop to a meeting? I can't imagine where you work. Liar.

Re:Good.

[cb8100]

In Soviet Russia, discussion generate this!

Open Office...

[Sporkinum]

I open and create all of my presentations in either Open Office or Star Office. So I don't see and issues for me. I don't do anything esoteric, so I have never had a MS Office user have a problem with my presentations.

Re:Open Office...

[RAMMS+EIN]

I've had plenty of problems. I work in a team where I have to deliver presentations in Powerpoint format. I use OpenOffice.org to create and show the presentations, and convert them to Powerpoint format for other team members. They often complain about text being unreadable (usually because it's in a different color from my original), weird symbols in the text (I get that too, when I open Powerpoint files in OOo), and text falling off the slides.

It's not like I'm doing anything fancy; I believe in the KISS principle. My slides are just titles, bullet lists, and the occasional image or code snippet, with a nice background. No animations, no special effects, no fancy fonts. I honestly don't know if the problem is with OOo or with Powerpoint, but I do occasionally hear people complain about similar problems with presentations made in (different versions of) Powerpoint as well, and I've had problems mixing versions of OpenOffice.org, too, so I guess they both have their flaws.

Re:Open Office...

[mspohr]

I wonder what you're doing to cause these issues. I've done all of my presentations for the past few years in OO.org and they are invariably presented on some random version of MS Powerpoint on the computer attached to the projector.

I've never had any of the problems you describe. However, I don't try anything fancy... Just text and images.

Re:Open Office...

[cheater512]

I've never had a problem with OO and the Powerpoint lectures my Uni has online.
They all render perfectly.

Admittedly I've never created a presentation in OO. I stay away from Powerpoint style things like the plague.

Re:Open Office...

[AmberBlackCat]

If you went the other way around, you might notice an Open Office problem. I was testing Open Office to see if it could be a suitable Office Suite for some friends who got a used computer without Microsoft Office. I used Open Office to load documents created with MS Office, and vice versa. I also edited and saved the documents, to see if they could still be loaded in the original packages and hadn't lost anything. The only place I found Open Office was lacking was in the OpenOffice.org version of Powerpoint. Some of the animation played way too slowly. So Powerpoint won there. But that was the only thing and I still ended up installing Open Office on the computer because they only needed the word processor anyway. AndO pen Office was much more impressive than it was a few years ago when it crashed as I was saving a file in Suse Linux. Maybe next time around the animation will work too.

Invasion

[justinbach]

That has got to be one of the funniest headlines I've seen in a LOOOONG time.

Stock up on milk and bread! Get out the hand-crank radio! The autoshapes are approaching fast! Run! For the love of God, RUN!!!!!!!!!!!!!!

Re:Invasion

[Rob+T+Firefly]

Death by poorly-animated pie charts. Is there no greater indignity?

Re:Invasion

[mattwarden]

Don't worry. It will take at least 3 seconds for them to fade in.

Re:Invasion

I'm with you, first thing I thought of. Instantly reminded of that classic dilbert strip (applogies for the commerical link, I couldnt find it else where legally)

Re:Invasion

[treeves]

I figured it was a counter-attack, really. Getting back at Edward Tufte for all that dissing.

Re:Invasion

[sgt_doom]

Is this going to be like PowerPoint on steroids???

Spicing things up

[Apocalypse111]

Well, if nothing else, college classes would get a little more interesting if the prefessor's slideshow suddenly turned into a stag reel...

DUCK - Ballmer has found the chair clipart

[LiquidCoooled]

All hell is going to break loose.

I wonder if this exploit is a problem for previous office versions?

(hope not, my 2000 works nicely)

Re:DUCK - Ballmer has found the chair clipart

[LiquidCoooled]

Too late, I scrolled after the crapvert and it says:

The flaw affects PowerPoint 2000, PowerPoint 2002 and PowerPoint 2003, as well as many versions of the Office suite, Secunia said. Its security advisory can be found here:

http://secunia.com/advisories/22394/

Powerpoint Poisoning is the real threat..

[Channard]

... I've seen plenty of presentations where the content has been so obscured by all the bells and whistles the user has added. While they're fixing the bug, maybe Microsoft can add a 'View Presentation in Minimalist Mode' option to Powerpoint.

Re:Powerpoint Poisoning is the real threat..

[99BottlesOfBeerInMyF]

... I've seen plenty of presentations where the content has been so obscured by all the bells and whistles the user has added. While they're fixing the bug, maybe Microsoft can add a 'View Presentation in Minimalist Mode' option to Powerpoint.

Sadly, Apple's Keynote program is even worse for this. Whenever I make a presentation that is not PR nonsense I have to restrain myself from using the cool transitions and the like which distract others from the content. Usually, I find a handful of slides with real graphs and information, combined with good notes and a lot of discussion is much more productive.

Re:Powerpoint Poisoning is the real threat..

[RAMMS+EIN]

``I've seen plenty of presentations where the content has been so obscured by all the bells and whistles the user has added.''

I think that goes for most of us. It always makes me wonder if the person making these slides didn't have anything better to do than adding all that fancy crap. But then again, they often seem to enjoy it, so I'm like, ok, let them have a little fun while doing there work.

Re:Powerpoint Poisoning is the real threat..

[RAMMS+EIN]

``But then again, they often seem to enjoy it, so I'm like, ok, let them have a little fun while doing there work.''

Come to think of it, maybe we should add a side bar with some games to Slashdot?

BTW: s/there work/their work/. Excuse me.

Re:Powerpoint Poisoning is the real threat..

[Z34107]

Microsoft should have a short "style guide" that appears the first time a user account starts powerpoint. It would have a nice list of my pet peeves, including:

• All slids should use the background image. The image should not just be a rectangle you drew over a blacnk slide because you were too stupid to click file->new, and if all else, it should not show a different seizure-inducing color every slide.
• Your powerpoint should never feature sound effects. This feature was included as a test to determine which people will make it onto Microsoft's colonization ship to Mars should anything apocalyptically uncool happen on Earth.
• Animation should be limited to making your bullet points appear one at a time. The text itself should not be used to induce seizures.
• Ues spl3ll chkec.
• Don't copy and paste what you're going to read, word for word, onto your slides a paragraph at a time.

How much pain would I have been saved if people would just follow these simple rules. Or stop their presentation when a representative sample of (captive) audience members experience retinal bleeding.

Not really a problem with bells and whistles, per se - Powerpoint's a nice, powerful app capable of creating really professional presentations. Just that there's a "max capacity" on each slide for flash. If x is the number of bells, whistles, and features (ab)used per slide, comprehension and aesthetic appeal, and the audience's opinion of the presentor have their limit lim x->oo = 0.

Re:Powerpoint Poisoning is the real threat..

[pedalman]

I work at a community college. In my department, the instructors are always emailing their students PowerPoint presentations with instructions to "go to the computer lab and print out the notes from this". All good and well, but these students are not PPT whizzes. They think that all they have to do is click "Print" and the notes come out. Never mind the fact that by default, Print gives you each slide on its own page. Then it gets really humourous when I tell them that they have exceeded their daily printing allowance and the server will replentish the balance the next day. Don't forget to thank your instructors for the inconvenience.

I've told instructors how they can make it easier on their students (e.g. send the notes to a Word doc, have the handouts duplicated before the semester starts, etc), but laziness sets in and they just figure it's easier to "let the computer guy do it".

I HATE PowerPoint^H^H^H^H^H^H^H^H^H^H the ABUSE of PowerPoint. All it does is feed the egos of people who think that they can substitute "pretty stuff" for substantive content.

Re:Powerpoint Poisoning is the real threat..

[frdmfghtr]

All slids should use the background image. The image should not just be a rectangle you drew over a blacnk slide because you were too stupid to click file->new, and if all else, it should not show a different seizure-inducing color every slide.

(See fourth bullet in your post) :)

Most of the time I prefer NO background image; it takes away from the content. I sat through a PowerPoint presentation at a seminar this past week, and it had bulleted lists, proper images, and no background at all. It was wonderful--it enhanced what the speaker was saying, without competing with what the speaker was saying.

If you are using PP as a visual aid then don't make it such that it distracts from the speaker; backgrounds, sound, and animation are for presentations that stand alone, i.e. do not have a speaker presenting the material.

What about Powerpoint 97?

Yes, I know, but I'd rather spend cash on something else and only really use powerpoint for viewing "amusing" presentations sent by email.

Powerpoint and Excel

[balsy2001]

When I was an intern at a company that was in a competition with other companies to get business from lockheed they sent out a CD with power point slides on it that showed how our company rated against other companies. They had "scrubbed" the presentation so that we didn't know who anyone was except for our own company. There were many Excel graphs in the slides. It turns out that not only were the graphs embedded in the slides but the entire spreadsheets to make them were too. This allowed me to find the code to un-scramble which companies were which. I am not sure if this was/still is an "exploit", but at least something that every one should be aware of.

Re:Powerpoint and Excel

[140Mandak262Jamuna]

Many users have found, to their dismay, that the documents they sent has complete unlimited unedit buffers and the reciepient can actually unwind the doc and see previous versions of the document!!. Some stupid companies "redact" information by setting the background font to be black. All you need to do is to select all text and suddenly the redacted text is readable, albeit in weird colors. There was high profile unintended release [/.ers dont even think of making a joke here on that phrase] of information.

FWIW one of the new features of Office 2005 or whatever MSFT calls its latest version is that, you can "purge history".

Re:Powerpoint and Excel

You can "purge history" on any MS file by just saving it to a new file name, rather than incrementally saving it. That also greatly reduces its size (the main reason I do it).

As for the excel embedding, that is not a bug; its very intentional. It can be avoided by inserting graphs and tables as pictures rather than worksheet objects. That's the better method for distribution as it makes more compact files, without excess data, that are more compatible with non-MS office suites.

Re:Powerpoint and Excel

[vertinox]

Funny thing about Excel, Word, and Powerpoint...

If you copy a small section or a single graph in Excel and paste it into Powerpoint as an object... It pastes the entire file.

Even if all you can see is just a small fraction of the file in powerpoint.

What I usually recommend it paste special as bit map or copy it as a picture (by holding down the shift key in excel and then going to Edit > Copy picture) and then paste into Powerpoint.

For some reason it looks nicer, keeps your PPT file size down, and you won't have people messing around with your numbers. *coughs*

OMG ITS CLIPPY

[GillBates0]

It looks like you're trying to close Powerpoint. Would you like me to kill you now?
NOOOOO!!1
BANG! BANG! BANG!
It looks like you're dead. Would you like help in calling the mortician?

Power Point Attack

That's the way I feel when I'm at a presentation that using that shit - attacked!

So .... what would do it?

[StressGuy]

Flip Chart?, Chalk board?, Shadow Puppets?

Not to be mean, but Powerpoint is merely a tool purpose-designed for doing presentations. It is quite possible to write a good presentation in Poser-poi...er...Powerpoint, it just can't compensate for a bad presenter.

I like OpenOffice Impress as well BTW.

Re:So .... what would do it?

Singing porpoises all the way. Last quarter sales REALLY mean something if conveyed in the circus act medium.

Re:So .... what would do it?

[MankyD]

Paper.

Print it out. Hand it out. You fit way more information on a sheet of paper than in power point (you can print 6 power point slides on an 8.5x11 and still have tons of white space left unused.) Also, it allows your audience to walk away from your presentation with the notes still in hand. Thirdly, it gives them a writing material on which to take notes. Fourth, no one will have trouble reading a sheet of paper right in front of them (unless they need a new glasses, of course.) Fifth, you won't have to flip back and forth through a hundred slide presentation - people are free to review material at their own pace without interrupting the presentation.

Re:So .... what would do it?

I'm afraid some trees don't like such approach.

Re:So .... what would do it?

[Kijori]

You could always use hemp paper. It's much more environmentally friendly.

Re:So .... what would do it?

[Y0tsuya]

Sure, let's kill more trees while we're at it.

Re:So .... what would do it?

[jarich]

people are free to review material at their own pace without interrupting the presentation.

Translation: People are free to ignore the presenter while the audience flips through the paper and reads at their own pace.

Then, after the presenter has wasted their time talking, you can tune back in and ask the questions that were just answered in the presentation.

Then the presenter can answer the same questions for the next person who also tuned out to read the hand outs.. then again for the next person....

Later the presenter can hear you gripe about much time was wasted with all the questions.

If the information can be conveyed with a handout, send email. If it can't, have a meeting, ~then~ provide hand outs. Don't duplicate. Violates the DRY principal. ;)

Re:So .... what would do it?

[pepeperes]

Ok fine, killing trees is not good, but using a 400W projector for a couple hours on a meeting, will use some good amount of energy which probably won't come from a fotovoltaic solar cell or some other green energy; I haven't done the numbers, so I can't tell for sure which case is "ecologically worse" ... but you can also use recycled paper can't you?

Attack of the Powerpoint!

[__aaclcg7560]

Now I'm scared and it's not even Halloween yet!

Re:Attack of the Powerpoint!

Hey, that's a great idea, I'll go to the Halloween party dressed up as a PowerPoint slide, and everyone will run screaming in terror!

We've done that...

[StressGuy]

Of course, back in my day it was overhead projectors and slide-show drums....but we've done that.

Re:We've done that...

Dude. you are like. super old.

Re:We've done that...

When I was a kid, we only had sticks and sand and we LIKED it!

Re:We've done that...

[hahiss]

Lucky you---when *I* was a kid we didn't even have representations . . . .

Like clockwork...

[Opportunist]

I wonder, is the guy whose bright idea it was to come up with a fixed day for patching still working at MS?

Re:Like clockwork...

[Provocateur]

They had no choice but to keep him. He makes good coffee, BTW. The other guy suggested posting patches on days ending in y; that was the last meeting he ever attended. The last printout he ever did on the company printer, was WILL WORK FOR ...but I never stuck around long enough to see the rest of it. Never saw him again.

Strange zero days indeed.
 

Hey Microsoft!

What's with the sudden interest in security? If I didn't know better, I'd think you had a new OS release imminent:P

What gives?

I thought...

[TubeSteak]

That it had already been established that undisclosed PowerPoint & MS Office exploits are being used to commit corporate espionage?

Nothing new

[msuzio]

I think every presentation I've ever seen with flying graphics, pie charts, bullet points zooming in from the left, and all the other PowerPoint abuses a sales or marketing droid can think up in his voluminous spare time off the golf course, would definitely qualify as "PowerPoint Attacks".

Name of the new PP attack: The Meeting

[FerretFrottage]

I'm sure the I can speak for most of us when I say that we've already been experiencing power point attacks and they started right around the time our bosses took their first power point course and learned how to use^H^H^H abuse sound and animations.

"An inconvenient truth" crashes on 500 screens...

[bubba_the_mermaid]

.. then invades all of the theatres showing "The Departed", "The Grudge 2", "Man of the Year", "Aquaman" and "Spiderman" to have the highest grossing box office weekend of all time.

Homeland_Security_Threat_Level = HIGH

[Dystopian+Rebel]

PowerPoint is the preferred communication tool of the Idiocracy.

If knowledge of this vulnerability falls into the wrong hands (Kim Jong-Il, Fascist Moozlams, Treacherous Liberals, or the French) it could destroy Corporate America!

Fortunately, it can't destroy the White House. They draw all their ideas on big sheets of paper with crayons.

Re:Homeland_Security_Threat_Level = HIGH

They use smaller sheets of paper than you might think.

Re:Homeland_Security_Threat_Level = HIGH

OMG! Someone please think of the DoD.

Re:Homeland_Security_Threat_Level = HIGH

[linuxfanatic1024]

That would be great! Corporate America could use some good destruction. :-P

Re:Homeland_Security_Threat_Level = HIGH

[TheOtherChimeraTwin]

Dick Cheney in particular uses a tiny piece of paper. I guess that is why W. gave him one of those loveable nicknames... little sheet.

I know of another Powerpoint attack ... :-)

[writermike]

And this is, I think, the first PC virus to attach into Meat Space, as it were.

The way this works is that a compromised Powerpoint presentation is played to a room-full a victims. The speaker is first affected, speaking in a very monotone voice, rapidly clicking through the compromised slides of bullet-points and pie-charts. Within 10 minutes, all the victims are asleep.

I swear. I've seen this happen!! NO URBAN LEGEND! Check SNOPES!!!!!!

The Powerpoint Version of the Gettysburg Address

[wsanders]

http://www.norvig.com/Gettysburg/

OK, so everyone has alreay seen this...

I'd agree in principle, but...

the trouble is when you have a very important presentation, the system that projects from your laptop or even your laptop has a tendancy of crapping out at that very time!

That's why you see those folks who print out their presentations and pass them out. Besides, a lot of folks like it so they can make their own notes on them.

With my +3 Green Laser Pointer...

[the+darn]

Your pitiful FlipChart-fu is no match for my mighty PowerPoint Attack!

Just sat through a "media-rich" PP presentation...

[StressGuy]

yesterday.

It was amazing, the guy just set it in motion and sat back down. Whole thing was animated, backgound music, transparent lettering that floated in front of the slides as they appeared. He never said a word, just let this thing run.

In the end, it was eye-candy but no substance. Being the smart-ass that I am, I made the comment to the guy sitting next to me (in a low and very dead-pan tone), "wow...he's got some mad powerpoint skills".

Ya know when you're in those situations where you have to be quiet?...and someone makes you laugh?....and you try to stifle that laugh only to have it come out as a snort, which is even worse?

Yea, I didn't make a friend that day...

"PowerPoint Attack"

[jayloden]

Microsoft Warns of PowerPoint Attack

We have these at work all the time. I call them "meetings"...

Power Point?

[cloudkiller]

I make all my slide shows using XHTML. It sure takes a lot longer than PowerPoint, but it makes me feel all warm inside and that is all any of us are after.

Ok, maybe it wasn't Stag Reels....

[StressGuy]

It was Burlesque Shows :)

Better to warn than admit you're warned

[rvw]

Weren't they warned about this problem several months ago? Or is this yet another one???

Does all Microsoft content have to be executable?

[Animats]

Microsoft has this annoying policy of putting some kind of general purpose execution engine in every Office product, from Word to PowerPoint to IE. Documents don't have to be Turing-complete, people. In fact, they're more useful if they're purely declarative - you can repurpose the content.

(Postscript is the classic bad example. The Postscript model is explicitly an interpreter. As a result, it's difficult to do anything with a Postscript document other than print it in the specified format. Text extraction is tough. Reliable format conversion is very tough. Reliable conversion to a different screen size, which ought to be easy, is terribly hard. Everybody moved away from Postscript, even Adobe. Microsoft should have learned from this.)

"Powerpoint Attack"?

[Kuukai]

You sure it's not this?

A Little Late, Isn't It?

[aquatone282]

I've been suffering PowerPoint attacks in morning meetings for years now.

Microsoft Warns of PowerPoint Attack

[Shadyman]

"The PowerPoints are coming!! The PowerPoints are coming!!"

Now working for mozilla

[codepunk]

I think she is working for mozilla now, maybe we will soon have a patch tuesday for firefox...

I think I know what's going on...

[CootOnDemand]

With all these patches that are now flooding windows users for both OS and other microsoft products. Microsoft has put so much effort into actually trying to roll out Vista, that they have committed a mistake only some small businesses are known for: Putting their eggs in one basket. They've let the obvious and numerous flaws from old operating systems stack up with no regard to fixing them save in massive updates, to find a way to push everyone involved in development and patching duties to focus on getting Vista ready for the open market. This is why now, after the announcement of pricing, the proposed features and system requirements, as well as migration costs, that many companies are now looking for other OS solution for future needs. I'm not saying Microsoft will be thrown away as the leading office system, but simply that they won't have the response they expect from customers once Vista has reached it's final retail (yet still incomplete) glory. But at least it make me feel a bit better that big companies can still make amateur mistakes...

Re:holy discs CD man....

[Joe+The+Dragon]

They can sent out bartpe style live cd's

Click to add title

[BeeBeard]

And we could call the sequel "The Return of the Revenge of the Son of Powerpoint: First Blood Part II." Eh, needs work.

Nothing to see here

[Ernesto+Alvarez]

This is not news.

I'm a network administrator and I've been noting (and every administrator on the planet too, I guess) that at least since april this year, in the days following patch tuesday (I call that "black friday") there is a new batch of exploits, and there are usually no MS exploits (the last month being an exception) until the next black friday.

Let's face it. If MS chooses a specific day to release al its patches of the month, it's logical that blackhats will choose a day that gives their exploits more bang for the buck.

Response time for MS if effectively 30 days (unless it happens to involve their DRM), and everybody knows it. Get used to it.

MSRC blog subtitle

[NaDrew]

Currently: "The Microsoft Security Response Center works every day to help protect customers from vulnerabilities in software."

Should be: "The Microsoft Security Response Center works every day to help protect customers from vulnerabilities in our software.

on-topic Soviet Russia

[davidwr]

In Soviet Russia

gaudy Powerpoint presentations full of hype but no real meaning whatsoever

ATTACK YOU!

The phrase PowerPoint attack

[rssrss]

The phrase PowerPoint attack causes me to think of a semi darkened room of people attending a business meeting. They have passed out on the seminar table, but they aren't dead, they are anesthetized.

That's OK

[turgid]

I've never used Powerpoint.

Re:That's OK

Well aren't you just specialtron, the only robot that can transform into uniqueness to save the universe.

Re:That's OK

[digitalhermit]

You know, I've used it but I would never actually install it on one of my machines (the corporate menagerie is another matter). However, the other day I noticed that Gateway had conveniently installed MSOffice on their factory image. It needs a key to start using it, but I wonder if any vulnerabilities can get through even if the product is not registered. It was close to 250M so I deleted it, but what if I hadn't?

Dupe! What`s wrong with editors?!?

[radu.stanca]

I mean, we see this "Microsoft 0day" story every week...

My Favorite PowerPoint Attack

[Greyfox]

Is to buy a laser "pointer" from Wickedlasers.com and use it to try to burn a hole in anyone who attempts to present a powerpoint presentation to me. Note that this method can be defeated by painting your skin the same color as the laser, which is why it's important to have a couple of different colors on hand in case your presenter is a wiley one (I'm still working out what to do in the event of one wearing a mirrored fire suit...)

Ammo

[riffzifnab]

I hear that Power Point is so feared because of its large store of ammunition, it has plenty of bullets.

Thanks folks I'll be here all week, and try the fish.

PowerPoint Attack - The October Surprise?

Quick raise the alert level to BSOD! It seems that KR is running out of scary material to keep Pavlov's people in line.

Re:Does all Microsoft content have to be executabl

Postscript is the classic bad example. The Postscript model is explicitly an interpreter. As a result, it's difficult to do anything with a Postscript document other than print it in the specified format.

I might be wrong, but wasn't the whole point of PostScript to be for printing? I think in that respect it succeeded rather well. I wasn't meant to be converted to different formats or re-aspected (actually pure "size" conversion [scaling] works well because its not raster) or edited or anything else.

And PostScript is still pretty heavily used in decent printers. PDF certainly has some PS heritage.

Evil

[the+eric+conspiracy]

What do you expect, Power Point is EVIL

Re:Evil

[sgt_doom]

So what you're saying is that PowerPoint isn't part of this intelligent design thing?

Re:Evil

That would be intuitively obvious to the casual observer.

Power point attack on the death star

http://lay-uh.ytmnd.com/

What Power Point is good for...

Powerpoint is good for those that generally don't know what they are talking about... but want to feel self important. Maybe they can't write, so they bullet and stand up. Maybe they are scared shit of putting in detail as then they would be discovered as BS experts.

Powerpoints is a political ego builder.

So if some corporate idiot stands up with a terse, non-detailed, non-specific influencing FUD, walk out isn't a bad thing to do. Successful managers do, game players stay. I want to see detail and comitment which counts a lot more than someone thinging aloud. and commitment comes from detail.

Re:What Power Point is good for...

[The+Great+Pretender]

Ever heard of the elavator pitch? I'd like to see one of your defined managers do that.

Pointy sticks?

[Thomas+Henden]

So - will Microsoft provide us with any defence against pointy sticks, then?

Re:Does all Microsoft content have to be executabl

[T-Ranger]

While true that PS is a Turing complete language, all those things you mention are specificly excluded from its goals. Its goal is to provide an exact method of printing something on paper. If you are trying to do something with a Postscript file and you are not either a Postscript printer, or Postscript displayer, then you are doing something outside of the spec.

The problem may be that people are using PS as a transmission-for-later-editing format, which it isnt.

Quick, post a load of off topic tosh ..

[rs232]

Quick, post a load of off topic tosh to distract from the article. This place is getting as bad as UseNet with all the trolling. Does anyone here want to discuss how accessing data can allow the execution of arbitrary code on a machine.

Re:Quick, post a load of off topic tosh ..

Does anyone here want to discuss how accessing data can allow the execution of arbitrary code on a machine.

No, because everyone here knows that would not be a good thing to do.
Why Microsoft doesn't also know that is a question for the psychologists.
Which we, mostly, aren't.

Microsoft Warns of PowerPoint Attack

[maccam]

Was this threat directed at the EU Commissioners?