CVE-2006-3877

2006-10-1022:07:00

CWE-94

[email protected]

web.nvd.nist.gov

cve-2006-3877

microsoft office

powerpoint

user-assisted

arbitrary code

crafted file

security vulnerability

7.1 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.057 Low

EPSS

Percentile

93.3%

JSON

Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via an unspecified “crafted file,” a different vulnerability than CVE-2006-3435, CVE-2006-4694, and CVE-2006-3876.

CPENameOperatorVersion
microsoft:frontpagemicrosoft frontpageeq2003
microsoft:projectmicrosoft projecteq2002
microsoft:accessmicrosoft accesseq2000
microsoft:outlookmicrosoft outlookeq2000
microsoft:powerpointmicrosoft powerpointeq2000
microsoft:projectmicrosoft projecteq2003
microsoft:officemicrosoft officeeq2004
microsoft:excelmicrosoft exceleq2000
microsoft:publishermicrosoft publishereq2000
microsoft:wordmicrosoft wordeq2000

CPE	Name	Operator	Version
microsoft:frontpage	microsoft frontpage	eq	2003
microsoft:project	microsoft project	eq	2002
microsoft:access	microsoft access	eq	2000
microsoft:outlook	microsoft outlook	eq	2000
microsoft:powerpoint	microsoft powerpoint	eq	2000
microsoft:project	microsoft project	eq	2003
microsoft:office	microsoft office	eq	2004
microsoft:excel	microsoft excel	eq	2000
microsoft:publisher	microsoft publisher	eq	2000
microsoft:word	microsoft word	eq	2000