CVE-2015-1671 is a vulnerability that affects the Microsoft Office package. The vulnerability allows an attacker to execute arbitrary code on a victim's machine if they open a specially crafted PowerPoint file. The flaw exists due to insufficient validation of user-supplied input, which could allow an attacker to control the execution flow of the program and perform unauthorized actions.
The vulnerability was discovered and reported in April 2015 by researchers from TrendMicro. Microsoft released a security update to address the issue as part of its monthly Patch Tuesday updates on May 12th, 2015. Organizations and individuals were advised to apply the patch as soon as possible to prevent exploitation of the vulnerability.
If left unpatched, the vulnerability could allow an attacker to take control of a victim's computer, steal sensitive data, install malware, or cause other damage. It highlights the importance of keeping software up-to-date with the latest security patches to protect against known vulnerabilities that can be exploited by attackers.