Vulnerabilities > CVE-2006-3449 - Unspecified vulnerability in Microsoft Powerpoint
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN microsoft
nessus
Summary
Unspecified vulnerability in Microsoft PowerPoint 2000 through 2003, possibly a buffer overflow, allows user-assisted remote attackers to execute arbitrary commands via a malformed record in the BIFF file format used in a PPT file, a different issue than CVE-2006-1540, aka "Microsoft PowerPoint Malformed Record Vulnerability."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 13 |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS06-048.NASL |
description | The remote host is running a version of Microsoft Office that could allow arbitrary code execution. To succeed, the attacker would have to send a rogue file to a user of the remote computer and have him open it with Microsoft Office. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 22190 |
published | 2006-08-08 |
reporter | This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/22190 |
title | MS06-048: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (922968) |
Oval
accepted | 2012-05-28T04:01:39.775-04:00 | ||||||||||||
class | vulnerability | ||||||||||||
contributors |
| ||||||||||||
definition_extensions |
| ||||||||||||
description | Unspecified vulnerability in Microsoft PowerPoint 2000 through 2003, possibly a buffer overflow, allows user-assisted remote attackers to execute arbitrary commands via a malformed record in the BIFF file format used in a PPT file, a different issue than CVE-2006-1540, aka "Microsoft PowerPoint Malformed Record Vulnerability." | ||||||||||||
family | windows | ||||||||||||
id | oval:org.mitre.oval:def:348 | ||||||||||||
status | accepted | ||||||||||||
submitted | 2006-08-11T12:53:40 | ||||||||||||
title | Microsoft PowerPoint Malformed Records Vulnerability | ||||||||||||
version | 9 |
References
- http://securityreason.com/securityalert/1342
- http://securityreason.com/securityalert/1342
- http://securitytracker.com/id?1016657
- http://securitytracker.com/id?1016657
- http://secway.org/advisory/AD20060808.txt
- http://secway.org/advisory/AD20060808.txt
- http://www.kb.cert.org/vuls/id/884252
- http://www.kb.cert.org/vuls/id/884252
- http://www.securityfocus.com/archive/1/442592/100/0/threaded
- http://www.securityfocus.com/archive/1/442592/100/0/threaded
- http://www.securityfocus.com/bid/19341
- http://www.securityfocus.com/bid/19341
- http://www.us-cert.gov/cas/techalerts/TA06-220A.html
- http://www.us-cert.gov/cas/techalerts/TA06-220A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-048
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-048
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A348
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A348