CVE-2006-3590

medium Microsoft
CVSS v3 Base Score
5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS Score
36.1%
Exploitation probability in 30 days
Top 3% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
High
Confidentiality
P
Integrity
P
Availability
P
Published: July 14, 2006 (7243 days ago)
Last Modified: April 16, 2026
Vendor: Microsoft
Source: NVD

Description

mso.dll, as used by Microsoft PowerPoint 2000 through 2003, allows user-assisted attackers to execute arbitrary commands via a malformed shape container in a PPT file that leads to memory corruption, as exploited by Trojan.PPDropper.B, a different issue than CVE-2006-1540 and CVE-2006-3493.

CWE

NVD-CWE-Other

Affected Products

microsoft powerpoint

References

🔗 blogs.securiteam.com 🔗 isc.sans.org 🔗 secunia.com 🔗 securityresponse.symantec.com 🔗 securitytracker.com