7.5

CVE-2006-3449

Unspecified vulnerability in Microsoft PowerPoint 2000 through 2003, possibly a buffer overflow, allows user-assisted remote attackers to execute arbitrary commands via a malformed record in the BIFF file format used in a PPT file, a different issue than CVE-2006-1540, aka "Microsoft PowerPoint Malformed Record Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftPowerpoint Version2000
MicrosoftPowerpoint Version2000 Langja
MicrosoftPowerpoint Version2000 Langko
MicrosoftPowerpoint Version2000 Langzh
MicrosoftPowerpoint Version2000 Updatesp2
MicrosoftPowerpoint Version2000 Updatesp3
MicrosoftPowerpoint Version2000 Updatesr1
MicrosoftPowerpoint Version2001 SwPlatformmac_os
MicrosoftPowerpoint Version2002
MicrosoftPowerpoint Version2002 Updatesp1
MicrosoftPowerpoint Version2002 Updatesp2
MicrosoftPowerpoint Version2002 Updatesp3
MicrosoftPowerpoint Version2003
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 42.78% 0.986
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.us-cert.gov/cas/techalerts/TA06-220A.html
Patch
Third Party Advisory
US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-048
http://securityreason.com/securityalert/1342
Third Party Advisory
http://securitytracker.com/id?1016657
Third Party Advisory
VDB Entry
http://secway.org/advisory/AD20060808.txt
Not Applicable
http://www.kb.cert.org/vuls/id/884252
Patch
Third Party Advisory
US Government Resource
http://www.securityfocus.com/archive/1/442592/100/0/threaded
http://www.securityfocus.com/bid/19341
Third Party Advisory
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A348
Third Party Advisory