cbcvebase.
CVE-2006-3435
published 2006-10-10

CVE-2006-3435: PowerPoint in Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac does not properly parse the slide notes field in a document, which allows remote…

PriorityP348critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
36.12%
98.3th percentile
PowerPoint in Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac does not properly parse the slide notes field in a document, which allows remote user-assisted attackers to execute arbitrary code via crafted data in this field, which triggers an erroneous object pointer calculation that uses data from within the document. NOTE: this issue is different than other PowerPoint vulnerabilities including CVE-2006-4694.

Affected

37 ranges· showing 25
VendorProductVersion rangeFixed in
microsoftaccess
microsoftaccess
microsoftaccess
microsoftexcel
microsoftexcel
microsoftexcel
microsoftexcel_viewer
microsoftfrontpage
microsoftfrontpage
microsoftfrontpage
microsoftinfopath
microsoftoffice
microsoftoffice
microsoftoffice
microsoftoffice
microsoftoffice
microsoftoffice
microsoftonenote
microsoftoutlook
microsoftoutlook
microsoftoutlook
microsoftpowerpoint
microsoftpowerpoint
microsoftpowerpoint
microsoftpowerpoint
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.