Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2006-5296
HistoryOct 16, 2006 - 7:07 p.m.

CVE-2006-5296

2006-10-1619:07:00
NVD-CWE-Other
[email protected]
web.nvd.nist.gov
22
cve-2006-5296
microsoft office 2003
powerpoint
denial of service
nvd

6.5 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.968 High

EPSS

Percentile

99.7%

JSON

PowerPoint in Microsoft Office 2003 does not properly handle a container object whose position value exceeds the record length, which allows user-assisted attackers to cause a denial of service (NULL dereference and application crash) via a crafted PowerPoint (.PPT) file, as demonstrated by Nanika.ppt, and a different vulnerability than CVE-2006-3435, CVE-2006-3876, CVE-2006-3877, and CVE-2006-4694. NOTE: the impact of this issue was originally claimed to be arbitrary code execution, but later analysis demonstrated that this was erroneous.

Related

cve 5
prion 1
securityvulns 5
nessus 4
checkpoint_advisories 4
saint 8
cert 4
zdi 1
cve
cve
CVE-2007-0913
2007-02-14 01:28:00
CVE-2006-3877
2006-10-10 22:07:00
CVE-2006-3876
2006-10-10 21:07:00
prion
prion
Design/Logic Flaw
2007-02-14 01:28:00
securityvulns
securityvulns
Microsoft Security Bulletin MS06-058 Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (924163)
2006-10-11 00:00:00
Microsoft Security Advisory (925984) Vulnerability in PowerPoint Could Allow Remote Code Execution
2006-09-28 00:00:00
ZDI-06-032: Microsoft Office PowerPoint Malformed Slide Notes Rebuilding Vulnerability
2006-10-11 00:00:00
nessus
nessus
MS06-058: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (924163)
2006-10-10 00:00:00
MS06-058 / MS06-059 / MS06-0060 / MS06-062: Vulnerabilities in Microsoft Office Allow Remote Code Execution (924163 / 924164 / 924554 / 922581) (Mac OS X)
2006-10-11 00:00:00
MS07-015: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (932554)
2007-02-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft PowerPoint PPT Document Parsing Code Execution (CVE-2006-5296)
2011-04-03 00:00:00
Microsoft PowerPoint Malformed Record Code Execution (MS06-058) - ver 2 (CVE-2006-4694)
2015-03-22 00:00:00
Microsoft PowerPoint Malformed Record Code Execution (MS06-058; CVE-2006-4694)
2015-03-29 00:00:00
saint
saint
Microsoft PowerPoint NamedShows record code execution
2006-10-12 00:00:00
Microsoft PowerPoint NamedShows record code execution
2006-10-12 00:00:00
Microsoft PowerPoint NamedShows record code execution
2006-10-12 00:00:00
cert
cert
Microsoft PowerPoint fails to properly handle malformed records
2006-09-27 00:00:00
Microsoft PowerPoint fails to properly handle malformed object pointers
2006-10-10 00:00:00
Microsoft PowerPoint malformed record memory corruption
2006-10-10 00:00:00
zdi
zdi
Microsoft PowerPoint Malformed Slide Notes Rebuilding Vulnerability
2006-10-10 00:00:00

6.5 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.968 High

EPSS

Percentile

99.7%

JSON
Related for CVE-2006-5296
cve5prion1securityvulns5nessus4checkpoint_advisories4saint8cert4zdi1