9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.741 High
EPSS
Percentile
97.8%
Added: 10/12/2006
CVE: CVE-2006-4694
BID: 20226
OSVDB: 29259
Microsoft PowerPoint is presentation software included in the Microsoft Office desktop suite.
Improper handling of malformed NamedShows records in PowerPoint files allows command execution.
Apply the patch referenced in Microsoft Security Bulletin 06-058.
<http://www.kb.cert.org/vuls/id/231204>
Exploit works on PowerPoint 2000 SR-1.
A user must follow a link to the exploit in order for the exploit to succeed.
Windows