{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-06-18T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in the HrShellOpenWithMonikerDisplayName function in Microsoft Hyperlink Object Library (hlink.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long hyperlink, as demonstrated using an Excel worksheet with a long link in Unicode, aka \"Hyperlink COM Object Buffer Overflow Vulnerability.\" NOTE: this is a different issue than CVE-2006-3059."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-18T14:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20060622 MS Excel Remote Code Execution POC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/438057/100/0/threaded"}, {"name": "20060622 RE: MS Excel Remote Code Execution POC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/438093/100/0/threaded"}, {"name": "20060623 Re: MS Excel Remote Code Execution POC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/438373/100/0/threaded"}, {"name": "VU#394444", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/394444"}, {"name": "20060623 Re: Re: MS Excel Remote Code Execution POC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/438156/100/0/threaded"}, {"name": "20060808 TSRT-06-10: Microsoft HLINK.DLL Hyperlink Object Library Buffer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/442724/100/0/threaded"}, {"name": "ADV-2006-2431", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2431"}, {"name": "oval:org.mitre.oval:def:999", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A999"}, {"tags": ["x_refsource_MISC"], "url": "http://blogs.technet.com/msrc/archive/2006/06/20/437826.aspx"}, {"name": "20060622 Re: MS Excel Remote Code Execution POC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/438096/100/0/threaded"}, {"name": "26666", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/26666"}, {"name": "excel-hlink-bo(27224)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27224"}, {"tags": ["x_refsource_MISC"], "url": "http://www.tippingpoint.com/security/advisories/TSRT-06-10.html"}, {"name": "20060618 ***ULTRALAME*** Microsoft Excel Unicode Overflow", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://marc.info/?l=full-disclosure&m=115067840426070&w=2"}, {"name": "20748", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20748"}, {"name": "MS06-050", "tags": ["vendor-advisory", "x_refsource_MS"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-050"}, {"name": "18500", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/18500"}, {"name": "1016339", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016339"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-3086", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in the HrShellOpenWithMonikerDisplayName function in Microsoft Hyperlink Object Library (hlink.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long hyperlink, as demonstrated using an Excel worksheet with a long link in Unicode, aka \"Hyperlink COM Object Buffer Overflow Vulnerability.\" NOTE: this is a different issue than CVE-2006-3059."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20060622 MS Excel Remote Code Execution POC Exploit", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/438057/100/0/threaded"}, {"name": "20060622 RE: MS Excel Remote Code Execution POC Exploit", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/438093/100/0/threaded"}, {"name": "20060623 Re: MS Excel Remote Code Execution POC Exploit", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/438373/100/0/threaded"}, {"name": "VU#394444", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/394444"}, {"name": "20060623 Re: Re: MS Excel Remote Code Execution POC Exploit", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/438156/100/0/threaded"}, {"name": "20060808 TSRT-06-10: Microsoft HLINK.DLL Hyperlink Object Library Buffer Overflow Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/442724/100/0/threaded"}, {"name": "ADV-2006-2431", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2431"}, {"name": "oval:org.mitre.oval:def:999", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A999"}, {"name": "http://blogs.technet.com/msrc/archive/2006/06/20/437826.aspx", "refsource": "MISC", "url": "http://blogs.technet.com/msrc/archive/2006/06/20/437826.aspx"}, {"name": "20060622 Re: MS Excel Remote Code Execution POC Exploit", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/438096/100/0/threaded"}, {"name": "26666", "refsource": "OSVDB", "url": "http://www.osvdb.org/26666"}, {"name": "excel-hlink-bo(27224)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27224"}, {"name": "http://www.tippingpoint.com/security/advisories/TSRT-06-10.html", "refsource": "MISC", "url": "http://www.tippingpoint.com/security/advisories/TSRT-06-10.html"}, {"name": "20060618 ***ULTRALAME*** Microsoft Excel Unicode Overflow", "refsource": "FULLDISC", "url": "http://marc.info/?l=full-disclosure&m=115067840426070&w=2"}, {"name": "20748", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20748"}, {"name": "MS06-050", "refsource": "MS", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-050"}, {"name": "18500", "refsource": "BID", "url": "http://www.securityfocus.com/bid/18500"}, {"name": "1016339", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016339"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:16:06.108Z"}, "title": "CVE Program Container", "references": [{"name": "20060622 MS Excel Remote Code Execution POC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/438057/100/0/threaded"}, {"name": "20060622 RE: MS Excel Remote Code Execution POC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/438093/100/0/threaded"}, {"name": "20060623 Re: MS Excel Remote Code Execution POC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/438373/100/0/threaded"}, {"name": "VU#394444", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/394444"}, {"name": "20060623 Re: Re: MS Excel Remote Code Execution POC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/438156/100/0/threaded"}, {"name": "20060808 TSRT-06-10: Microsoft HLINK.DLL Hyperlink Object Library Buffer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/442724/100/0/threaded"}, {"name": "ADV-2006-2431", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2431"}, {"name": "oval:org.mitre.oval:def:999", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A999"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://blogs.technet.com/msrc/archive/2006/06/20/437826.aspx"}, {"name": "20060622 Re: MS Excel Remote Code Execution POC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/438096/100/0/threaded"}, {"name": "26666", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/26666"}, {"name": "excel-hlink-bo(27224)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27224"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.tippingpoint.com/security/advisories/TSRT-06-10.html"}, {"name": "20060618 ***ULTRALAME*** Microsoft Excel Unicode Overflow", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://marc.info/?l=full-disclosure&m=115067840426070&w=2"}, {"name": "20748", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20748"}, {"name": "MS06-050", "tags": ["vendor-advisory", "x_refsource_MS", "x_transferred"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-050"}, {"name": "18500", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/18500"}, {"name": "1016339", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016339"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-3086", "datePublished": "2006-06-19T19:00:00.000Z", "dateReserved": "2006-06-19T00:00:00.000Z", "dateUpdated": "2024-08-07T18:16:06.108Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:hyperlink_object_library:*:*:*:*:*:*:*:*", "matchCriteriaId": "BC8470B2-118A-4A5E-94CA-636BFA8A75F6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in the HrShellOpenWithMonikerDisplayName function in Microsoft Hyperlink Object Library (hlink.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long hyperlink, as demonstrated using an Excel worksheet with a long link in Unicode, aka \"Hyperlink COM Object Buffer Overflow Vulnerability.\" NOTE: this is a different issue than CVE-2006-3059."}, {"lang": "es", "value": "Un desbordamiento de b\u00fafer basado en pila en la funci\u00f3n HrShellOpenWithMonikerDisplayName en la Biblioteca de objetos de Hiperv\u00ednuclo de Microsoft (hlink.dll) permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda de la aplicaci\u00f3n) y posiblemente ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un hiperv\u00ednculo demasiado largo, tal y como se demuestra con una hoja de c\u00e1lculo Excel con un enlace en Unicode demasiado largo. Se trata de un problema tambi\u00e9n conocido como \"vulnerabilidad de desbordamiento de b\u00fafer del objeto hiperv\u00ednculo COM.\" NOTA: se trata de un problema diferente al del CVE-2006-3059."}], "id": "CVE-2006-3086", "lastModified": "2026-04-16T00:27:16.627", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-06-19T19:02:00.000", "references": [{"source": "cve@mitre.org", "url": "http://blogs.technet.com/msrc/archive/2006/06/20/437826.aspx"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=full-disclosure&m=115067840426070&w=2"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/20748"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://securitytracker.com/id?1016339"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/394444"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/26666"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/438057/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/438093/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/438096/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/438156/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/438373/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/442724/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/18500"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.tippingpoint.com/security/advisories/TSRT-06-10.html"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2431"}, {"source": "cve@mitre.org", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-050"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27224"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A999"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://blogs.technet.com/msrc/archive/2006/06/20/437826.aspx"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=full-disclosure&m=115067840426070&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/20748"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://securitytracker.com/id?1016339"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/394444"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/26666"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/438057/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/438093/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/438096/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/438156/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/438373/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/442724/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/18500"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.tippingpoint.com/security/advisories/TSRT-06-10.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/2431"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-050"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27224"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A999"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}