CVE-2006-3449

Severity

75%

Complexity

99%

Confidentiality

106%

Unspecified vulnerability in Microsoft PowerPoint 2000 through 2003, possibly a buffer overflow, allows user-assisted remote attackers to execute arbitrary commands via a malformed record in the BIFF file format used in a PPT file, a different issue than CVE-2006-1540, aka "Microsoft PowerPoint Malformed Record Vulnerability."

Unspecified vulnerability in Microsoft PowerPoint 2000 through 2003, possibly a buffer overflow, allows user-assisted remote attackers to execute arbitrary commands via a malformed record in the BIFF file format used in a PPT file, a different issue than CVE-2006-1540, aka "Microsoft PowerPoint Malformed Record Vulnerability."

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

Type

Microsoft PowerPoint

First reported 18 years ago

2006-08-09 00:04:00

Last updated 6 years ago

2018-10-18 16:47:00

Affected Software

Microsoft PowerPoint 2000

2000

Microsoft PowerPoint 2000 sp2

2000

Microsoft PowerPoint 2000 sp3

2000

Microsoft PowerPoint 2000 sr1

2000

Microsoft PowerPoint 2001 for Mac OS

2001
mac_os

Microsoft PowerPoint 2002

2002

Microsoft PowerPoint 2002 sp1

2002

Microsoft PowerPoint 2002 sp2

2002

Microsoft PowerPoint 2002 Service Pack 3

2002

Microsoft PowerPoint 2003

2003

References

1342

Third Party Advisory

1016657

Third Party Advisory, VDB Entry

http://secway.org/advisory/AD20060808.txt

Not Applicable

VU#884252

Patch, Third Party Advisory, US Government Resource

20060808 Microsoft PowerPoint Malformed Record Memory Corruption

19341

Third Party Advisory, VDB Entry

TA06-220A

Patch, Third Party Advisory, US Government Resource

MS06-048

oval:org.mitre.oval:def:348

Third Party Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.