Preview

Digital Solutions and Artificial Intelligence Technologies

Advanced search

Undeclared File Architecture Features. Vulnerability of Microsoft PowerPoint’s PPTX Format

https://doi.org/10.26794/3033-7097-2026-2-1-28-34

Abstract

Presentations have become an integral part of the core processes of many areas of professional activity. Nevertheless, the market for professional software packages that allow you to create presentations that meet modern requirements is not so saturated with competition. Microsoft’s software products are the undisputed leader. Competitors are much inferior in quality. But, as mentioned in previous articles in this series, cross-platform file formats are not protected from simple injections (without programming knowledge). A detailed example for a word processor was demonstrated in the second part. In this article, the PPTX format will be analyzed in a similar scenario. A simple injection with a hidden link to the active element is a demonstration of the undeclared capabilities of this type of file formats. It should be remembered that these files can be run or opened on absolutely any (including mobile) smart device. This article, like the previous ones, does not provide instructions for harming* firms or organizations**. The articles have exclusively educational functions and warnings for current specialists. 

About the Authors

A. A. Ryzhenko
Financial University under the Government of the Russian Federation
Russian Federation

Alexey A. Ryzhenko — Cand. Sci. (Tech.), Assoc. Prof. of the Information Safety Department

Moscow



S. I. Kozminych
Financial University under the Government of the Russian Federation; Plekhanov Russian University of Economics
Russian Federation

Sergey I. Kozminykh — Dr. Sci. (Tech.), Assoc. Prof., Prof. of the Department of Applied Informatics and Information Security, Plekhanov Russian University of Economics; Professor of Information Security Department, Financial University under the Government of the Russian Federation

Moscow



References

1. Ryzhenko A.A., Kozminykh S.I. Undeclared file architecture features: graphical containers. Digital solutions and artificial intelligence technologies. 2025;1(3):55-61. (In Russ.). DOI: 10.26794/3033-7097-2025-1-3-55-61

2. Ryzhenko A.A., Kozminykh S.I. Undeclared file architecture features: Automated office, text editor, DocX format. Digital solutions and artificial intelligence technologies. 2025;1(4):60-68. (In Russ.). DOI: 10.26794/3033-7097-2025-1-4-60-68

3. Petrosyan M.A., Usenko A.S. The concept and elements of criminalistics characteristics of unauthorized access to computer information. Epomen. Global. 2023;43:123-140. URL: https://elibrary.ru/mfcqwu

4. Elizarov M.M.Identification of vulnerabilities and undeclared features in software. Internauka. 2024;21-1(338):60- 61. URL: https://elibrary.ru/DLCUNL (In Russ.).

5. Begaev A.N., Kashin S.V., Markevich N.A., Marchenko A.A. Identification of vulnerabilities and undeclared features in software. Saint Petersburg: ITMO University; 2020. 38 p. URL: https://elibrary.ru/xfaznp (In Russ.).

6. Markin D.O., Makeev S.M., Sannikov I.A., Chung H.T. Methodology for investigating the system software of Cisco network equipment for undeclared capabilities. Scientific notes of the Orel State University. 2020;3(88):215-221. URL: https://elibrary.ru/xyjmtf (In Russ.).

7. Markin D.O., Makeev S.M., Ho Thaj Trung. Security threat level estimation for untrusted software based on TrustZone technology. Proceedings of the Institute for System Programming of RAS. 2022;34(1):35-48. DOI: 10.15514/ISPRAS-2022-34(1)-3

8. Zhuk R.V. Methodology and algorithms for determining actual threats to information security in personal data information systems. Cand. Sci. (Tech.) thesis. St. Petersburg: St. Petersburg State University of Telecommunications named after Prof. M.A. Bonch Bruevich, 2021. URL: https://elibrary.ru/prxzhx (In Russ.).


Review

For citations:


Ryzhenko A.A., Kozminych S.I. Undeclared File Architecture Features. Vulnerability of Microsoft PowerPoint’s PPTX Format. Digital Solutions and Artificial Intelligence Technologies. 2026;2(1):28-34. (In Russ.) https://doi.org/10.26794/3033-7097-2026-2-1-28-34

Views: 95

JATS XML


Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.


ISSN 3033-7097 (Online)