Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3656

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-3656
Last Modified 12 Apr 2011 12:00:00
Published 18 Jul 2006 11:47:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-3656

Summary

Unspecified vulnerability in Microsoft PowerPoint 2003 allows user-assisted attackers to cause memory corruption via a crafted PowerPoint file, which triggers the corruption when the file is closed. NOTE: due to the lack of available details as of 20060717, it is unclear how this is related to CVE-2006-3655, CVE-2006-3660, and CVE-2006-3590, although it is possible that they are all different.

Vulnerable Systems

Application

  • Microsoft Powerpoint 2003


References

XF - powerpoint-unspecified-memory-corruption(27782)

XF - powerpoint-mso-code-execution2(27781)

VUPEN - ADV-2006-2815

BID - 19229

BID - 18993

BUGTRAQ - 20060717 New CVE identifiers for separate PowerPoint 0-day issues assigned

BUGTRAQ - 20060718 About the latest three Powerpoint vulnerabilities: exploitable?

BUGTRAQ - 20060715 MS Power Point Multiple Vulnerabilities - (memory corruption) POC

SECUNIA - 21061

MISC - http://packetstormsecurity.org/0607-exploits/mspp-poc3.txt

MISC - http://downloads.securityfocus.com/vulnerabilities/exploits/PP2003sp2patched_fr_exploit-method.txt


Last Updated: 27 May 2016 10:43:05