Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2006-3590
HistoryJul 14, 2006 - 6:05 p.m.

CVE-2006-3590

2006-07-1418:05:00
[email protected]
web.nvd.nist.gov
7

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

7

Confidence

Low

EPSS

0.581

Percentile

97.8%

JSON

mso.dll, as used by Microsoft PowerPoint 2000 through 2003, allows user-assisted attackers to execute arbitrary commands via a malformed shape container in a PPT file that leads to memory corruption, as exploited by Trojan.PPDropper.B, a different issue than CVE-2006-1540 and CVE-2006-3493.

Affected configurations

Nvd
Node
microsoftpowerpointMatch2000
OR
microsoftpowerpointMatch2002
OR
microsoftpowerpointMatch2003
OR
microsoftpowerpointMatch2003sp1
OR
microsoftpowerpointMatch2003sp2
VendorProductVersionCPE
microsoftpowerpoint2000cpe:2.3:a:microsoft:powerpoint:2000:*:*:*:*:*:*:*
microsoftpowerpoint2002cpe:2.3:a:microsoft:powerpoint:2002:*:*:*:*:*:*:*
microsoftpowerpoint2003cpe:2.3:a:microsoft:powerpoint:2003:*:*:*:*:*:*:*
microsoftpowerpoint2003cpe:2.3:a:microsoft:powerpoint:2003:sp1:*:*:*:*:*:*
microsoftpowerpoint2003cpe:2.3:a:microsoft:powerpoint:2003:sp2:*:*:*:*:*:*

Related

cvelist 7
cve 7
cert 2
checkpoint_advisories 4
nvd 6
securityvulns 4
prion 1
exploitdb 2
nessus 3
cvelist
cvelist
CVE-2006-3590
2006-07-14 18:00:00
CVE-2006-1540
2006-03-30 11:00:00
CVE-2006-3493
2006-07-10 22:00:00
cve
cve
CVE-2006-3590
2006-07-14 18:05:00
CVE-2006-3493
2006-07-10 22:05:00
CVE-2006-1540
2006-03-30 11:02:00
cert
cert
Microsoft PowerPoint does not properly handle malformed shapes
2006-07-14 00:00:00
Microsoft Office string parsing vulnerability
2006-07-11 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Office File Malformed String Parsing Buffer Overflow (MS06-038) - ver 2 (CVE-2006-1540)
2011-05-17 00:00:00
Microsoft Office File Malformed String Parsing Buffer Overflow(MS06-038; CVE-2006-1540)
2011-05-17 00:00:00
Microsoft Word mso.dll LsCreateLine Memory Corruption (CVE-2006-3493)
2011-05-24 00:00:00
nvd
nvd
CVE-2006-1540
2006-03-30 11:02:00
CVE-2006-3493
2006-07-10 22:05:00
CVE-2006-3449
2006-08-09 00:04:00
securityvulns
securityvulns
SYMSA-2006-007: Microsoft Office Malformed String Parsing Vulnerability
2006-07-11 00:00:00
SYMSA-2006-007: Microsoft Office Malformed String Parsing Vulnerability
2006-07-11 00:00:00
Microsoft Security Bulletin MS06-048 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (922968)
2006-08-08 00:00:00
prion
prion
Integer overflow
2006-03-30 11:02:00
exploitdb
exploitdb
Microsoft Office Products - Array Index Bounds Error (PoC)
2006-03-27 00:00:00
Microsoft Word 2000/2003 - Unchecked Boundary Condition
2006-07-10 00:00:00
nessus
nessus
MS06-048: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (922968)
2006-08-08 00:00:00
MS06-038: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (917284)
2006-07-11 00:00:00
MS06-037 / MS06-038: Vulnerabilities in Microsoft Excel and Office Could Allow Remote Code Execution (917284 / 917285) (Mac OS X)
2006-07-11 00:00:00

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

7

Confidence

Low

EPSS

0.581

Percentile

97.8%

JSON
Related for NVD:CVE-2006-3590
cvelist7cve7cert2checkpoint_advisories4nvd6securityvulns4prion1exploitdb2nessus3