Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2006-3086

EPSS 59.58% · P98
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-3086

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Stack-based buffer overflow in the HrShellOpenWithMonikerDisplayName function in Microsoft Hyperlink Object Library (hlink.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long hyperlink, as demonstrated using an Excel worksheet with a long link in Unicode, aka "Hyperlink COM Object Buffer Overflow Vulnerability." NOTE: this is a different issue than CVE-2006-3059.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft HLINK.DLL链接 栈溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。 Microsoft Windows的hlink.dll在处理超级链接时存在栈溢出漏洞。攻击者可以通过构建恶意超链接来利用此漏洞。如果用户单击网站、Office文件或电子邮件中的恶意链接,可能会导致允许远程执行代码。成功利用此漏洞的攻击者可以完全控制受影响的系统。要利用此漏洞,需要进行用户交互。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2006-3086

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2006-3086

登录查看更多情报信息。

Same Patch Batch · n/a · 2006-06-19 · 36 CVEs total

CVE-2006-3072Symantec Security Information Manager M4 Mac 认证绕过漏洞
CVE-2006-3064CPG include/function.inc.php SQL注入漏洞
CVE-2006-3065blur6ex blog.php SQL注入漏洞
CVE-2006-3066IBM DB2 Universal Database TCP/IP监听 缓冲区溢出
CVE-2006-3067IBM DB2 (UDB) 多个未明漏洞
CVE-2006-3068IBM DB2 UDB 特定信息 拒绝服务漏洞
CVE-2006-3069RETIRED: DoubleSpeak 多个远程文件包含漏洞
CVE-2006-3070Zeroboard write_ok.php 任意文件上载漏洞
CVE-2006-3071MP3 Search/Archive index.php 跨站脚本攻击(XSS)漏洞
CVE-2006-3063myPHP Guestbook 多个跨站脚本攻击(XSS)漏洞
CVE-2006-3073Cisco VPN3K/ASA WebVPN无客户端模式 多个跨站脚本攻击漏洞
CVE-2006-3074Kaspersky Anti-Virus klif.sys 拒绝服务漏洞
CVE-2006-3075PictureDis Professional/PictureDis Photoalbum 多个PHP远程文件包含漏洞
CVE-2006-3076PhpBlueDragon CMS Template.PHP 远程文件包含漏洞
CVE-2006-3077aXentGuestbook guestbook.cfm 跨站脚本攻击(XSS)漏洞
CVE-2006-3078APBoard 多个SQL注入漏洞
CVE-2006-3079SSPwiz Plus index.cfm 跨站脚本攻击(XSS)漏洞
CVE-2006-3080AxentForum viewposts.cfm 跨站脚本攻击漏洞
CVE-2006-3096iPostMX 多个SQL注入漏洞
CVE-2006-3088Car Classifieds index.php 跨站脚本(XSS)漏洞

Showing top 20 of 36 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2006-3086

No comments yet

Leave a comment