CVE-2006-0004 — Microsoft Office vulnerability

4 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

41.3%

top 2.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Office

Timeline

PublishedFeb 14

Latest updateMay 1

Description

Microsoft PowerPoint 2000 in Office 2000 SP3 has an interaction with Internet Explorer that allows remote attackers to obtain sensitive information via a PowerPoint presentation that attempts to access objects in the Temporary Internet Files Folder (TIFF).

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/office2000

🔴Vulnerability Details

GHSA

GHSA-2v9w-j2pw-g467: Microsoft PowerPoint 2000 in Office 2000 SP3 has an interaction with Internet Explorer that allows remote attackers to obtain sensitive information vi↗2022-05-01

▶

💥Exploits & PoCs

Exploit-DB

SyntaxCMS 1.3 - '0004_init_urls.php' Remote File Inclusion↗2006-09-24

▶

💬Community

Bugzilla

CVE-2006-1548 struts LookupDispatchAction XSS↗2008-01-28

▶