CVSS: 2.6EPSS: 78%CPEs: 3EXPL: 2CVE-2006-3656 – Microsoft PowerPoint 2003 - '.ppt' File Closure Memory Corruption
https://notcve.org/view.php?id=CVE-2006-3656
Unspecified vulnerability in Microsoft PowerPoint 2003 allows user-assisted attackers to cause memory corruption via a crafted PowerPoint file, which triggers the corruption when the file is closed. NOTE: due to the lack of available details as of 20060717, it is unclear how this is related to CVE-2006-3655, CVE-2006-3660, and CVE-2006-3590, although it is possible that they are all different. Vulnerabilidad no especificada en Microsoft PowerPoint 2003 permite a atacantes con la complicidad del usuario provocar una corrupción de memoria mediante un fichero PowerPoint manipulado artesanalmente, lo cual provoca la corrupción al cerrar el fichero. NOTA: debido a la falta de detalles disponibles desde el 17/07/2007, no está claro como esto está relacionado con CVE-2006-3655, CVE-2006-3660, y CVE-2006-3590, aunque es posible que todas ellas sean diferentes. • https://www.exploit-db.com/exploits/28226 http://downloads.securityfocus.com/vulnerabilities/exploits/PP2003sp2patched_fr_exploit-method.txt http://packetstormsecurity.org/0607-exploits/mspp-poc3.txt http://secunia.com/advisories/21061 http://www.securityfocus.com/archive/1/440108/100/0/threaded http://www.securityfocus.com/archive/1/440370/100/0/threaded http://www.securityfocus.com/archive/1/440867/100/0/threaded http://www.securityfocus.com/bid/18993 http://www.securityfocus.com/bid/ •
CVSS: 7.6EPSS: 47%CPEs: 3EXPL: 3CVE-2006-3660 – Microsoft PowerPoint 2003 - 'powerpnt.exe' Remote Overflow
https://notcve.org/view.php?id=CVE-2006-3660
Unspecified vulnerability in Microsoft PowerPoint 2003 has unknown impact and user-assisted attack vectors related to powerpnt.exe. NOTE: due to the lack of available details as of 20060717, it is unclear how this is related to CVE-2006-3655, CVE-2006-3656, and CVE-2006-3590, although it is possible that they are all different. Vulnerabilidad no especificada en Microsoft PowerPoint 2003 tiene impacto desconocido y vectores de ataque con intervención del usuario relacionados con powerpnt.exe. NOTA: debido a la falta de detalles disponibles a fecha de 17/07/2006, no está claro cómo está relacionado con CVE-2006-3655, CVE-2006-3656, y CVE-2006-3590, aunque es posible que sean todas diferentes. • https://www.exploit-db.com/exploits/28225 http://secunia.com/advisories/21061 http://www.securityfocus.com/archive/1/440106/30/30/threaded http://www.securityfocus.com/archive/1/440370/100/0/threaded http://www.securityfocus.com/archive/1/440867/100/0/threaded http://www.securityfocus.com/bid/18993 http://www.vupen.com/english/advisories/2006/2815 https://exchange.xforce.ibmcloud.com/vulnerabilities/27783 •
CVSS: 5.1EPSS: 53%CPEs: 5EXPL: 0CVE-2006-3590
https://notcve.org/view.php?id=CVE-2006-3590
mso.dll, as used by Microsoft PowerPoint 2000 through 2003, allows user-assisted attackers to execute arbitrary commands via a malformed shape container in a PPT file that leads to memory corruption, as exploited by Trojan.PPDropper.B, a different issue than CVE-2006-1540 and CVE-2006-3493. mso.dll, usado por Microsoft PowerPoint 2000 a 2003, permite a atacantes remotos con la complicidad del usuario ejecutar órdenes de su elección mediante la configuración de la forma malformado en un fichero PPT , lo que causa una corrupción de memoria, explotado por Trojan.PPDropper.B, un asunto diferente que CVE-2006-1540 y CVE-2006-3493. • http://blogs.securiteam.com/?p=508 http://isc.sans.org/diary.php?storyid=1484 http://secunia.com/advisories/21040 http://securityresponse.symantec.com/avcenter/venc/data/trojan.ppdropper.b.html http://securitytracker.com/id?1016496 http://www.kb.cert.org/vuls/id/936945 http://www.osvdb.org/27324 http://www.securityfocus.com/archive/1/440137/100/0/threaded http://www.securityfocus.com/archive/1/440255/100/0/threaded http://www.securityfocus.com/archive/1/440532/10 •
CVSS: 7.6EPSS: 72%CPEs: 13EXPL: 0CVE-2006-0022
https://notcve.org/view.php?id=CVE-2006-0022
Unspecified vulnerability in Microsoft PowerPoint in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP1 and SP2, Office 2004 for Mac, and v. X for Mac allows user-assisted attackers to execute arbitrary code via a PowerPoint document with a malformed record, which triggers memory corruption. • http://secunia.com/advisories/20633 http://securitytracker.com/id?1016287 http://www.kb.cert.org/vuls/id/190089 http://www.osvdb.org/26435 http://www.securityfocus.com/bid/18382 http://www.us-cert.gov/cas/techalerts/TA06-164A.html http://www.vupen.com/english/advisories/2006/2325 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-028 https://exchange.xforce.ibmcloud.com/vulnerabilities/26784 https://oval.cisecurity.org/repository/search/definition/ov •
CVSS: 7.5EPSS: 48%CPEs: 22EXPL: 0CVE-2004-0848
https://notcve.org/view.php?id=CVE-2004-0848
Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2) "%0a" (carriage return) in .rtf filenames. • http://www.kb.cert.org/vuls/id/416001 http://www.us-cert.gov/cas/techalerts/TA05-039A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-005 https://exchange.xforce.ibmcloud.com/vulnerabilities/19107 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2348 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2738 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A40 •