VYPR
Unrated severityNVD Advisory· Published Jun 19, 2006· Updated Jun 16, 2026

CVE-2006-3086

CVE-2006-3086

Description

Stack-based buffer overflow in the HrShellOpenWithMonikerDisplayName function in Microsoft Hyperlink Object Library (hlink.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long hyperlink, as demonstrated using an Excel worksheet with a long link in Unicode, aka "Hyperlink COM Object Buffer Overflow Vulnerability." NOTE: this is a different issue than CVE-2006-3059.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:microsoft:hyperlink_object_library:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:hyperlink_object_library:*:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

18

News mentions

0

No linked articles in our index yet.