Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-3493Code Injection in Microsoft Office

CWE-94Code Injection6 documents4 sources
Severity
5.1MEDIUMNVD
VulnCheck9.3
EPSS
57.7%
top 1.82%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Microsoft OfficeMicrosoft Powerpoint
Timeline
PublishedJul 10
Latest updateMay 1

Description

Buffer overflow in LsCreateLine function (mso_203) in mso.dll and mso9.dll, as used by Microsoft Word and possibly other products in Microsoft Office 2003, 2002, and 2000, allows remote user-assisted attackers to cause a denial of service (crash) via a crafted Word DOC or other Office file type. NOTE: this issue was originally reported to allow code execution, but on 20060710 Microsoft stated that code execution is not possible, and the original researcher agrees.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages2 packages

NVDmicrosoft/office2000, 2003, xp+2
NVDmicrosoft/powerpoint2000, 2002, 2003+2

🔴Vulnerability Details

3
GHSA
GHSA-rh8h-gpvg-vg6q: mso2022-05-01
GHSA
GHSA-f8c7-wfvw-q6v3: Buffer overflow in LsCreateLine function (mso_203) in mso2022-05-01
VulnCheck
Microsoft PowerPoint Mso.dll Vulnerability2006

💥Exploits & PoCs

1
Exploit-DB
Microsoft Word 2000/2003 - Unchecked Boundary Condition2006-07-10
CVE-2006-3493 — Code Injection in Microsoft Office | cvebase