High-risk tools in Ppt
11 of the 156 tools in Ppt are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
ppt_build_freeformExecuteppt_build_freeform
-
ppt_execute_msoExecuteppt_execute_mso
-
ppt_slideshow_startExecuteStart a slide show presentation.
-
ppt_slideshow_stopExecuteEnd the currently running slide show.
-
ppt_start_undo_entryExecuteStart a new undo entry in PowerPoint.
-
ppt_slideshow_gotoExecuteNavigate to a specific slide in the running slide show.
-
ppt_slideshow_nextExecuteAdvance to the next slide in the running slide show.
-
ppt_slideshow_previousExecuteGo back to the previous slide in the running slide show.
-
ppt_connectExecuteConnect to a running PowerPoint instance or launch a new one.
-
ppt_select_shapesExecuteSelect multiple shapes on a slide by name.
-
ppt_set_window_stateExecuteSet the PowerPoint application window state.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.