Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-3655 — Microsoft Powerpoint vulnerability

4 documents4 sources

Severity

5.1MEDIUMNVD

EPSS

64.8%

top 1.53%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Powerpoint

Timeline

PublishedJul 18

Latest updateMay 1

Description

Unspecified vulnerability in mso.dll in Microsoft PowerPoint 2003 allows user-assisted attackers to execute arbitrary code via a crafted PowerPoint file. NOTE: due to the lack of available details as of 20060717, it is unclear how this is related to CVE-2006-3656, CVE-2006-3660, and CVE-2006-3590, although it is possible that they are all different.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/powerpoint2003

🔴Vulnerability Details

GHSA

GHSA-h95h-vwpr-fwvm: Unspecified vulnerability in mso↗2022-05-01

▶

CVEList

CVE-2006-3655: Unspecified vulnerability in mso↗2006-07-17

▶

💥Exploits & PoCs

Exploit-DB

Microsoft PowerPoint 2003 - 'mso.dll' '.PPT' Processing Code Execution↗2006-07-14

▶