Right after Microsoft has released an out-of-cylce security update, a new 0-day exploit that affects MS PowerPoint has been found in the wild. Apparently, Microsoft has been aware of this vulnerability prior to the discovery of the sample in the wild because they have already detected the sample as Exploit:Win32/Controlppt.X. The vulnerability must have been responsibly disclosed by the discoverer. In addition, Microsoft has published a security advisory to provide its customers a comprehensive information and workarounds.
TrendLabs has acquired a sample of the malicious PowerPoint file and has given the detection name TROJ_PPDROPPER.L.
