CVE-2006-5994

2006-12-0620:28:00

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.962

Percentile

99.5%

JSON

Unspecified vulnerability in Microsoft Word 2000 and 2002, Office Word and Word Viewer 2003, Word 2004 and 2004 v. X for Mac, and Works 2004, 2005, and 2006 allows remote attackers to execute arbitrary code via a Word document with a malformed string that triggers memory corruption, a different vulnerability than CVE-2006-6456.

Affected configurations

Nvd

Node

microsoftofficeMatch2000sp3

microsoftofficeMatch2003sp2

microsoftofficeMatch2004mac

microsoftofficeMatchxpsp3

microsoftwordMatch2000

microsoftwordMatch2002

microsoftwordMatch2003

microsoftword_viewerMatch2003

microsoftworksMatch2004

microsoftworksMatch2005

microsoftworksMatch2006

VendorProductVersionCPE
microsoftoffice2000cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*
microsoftoffice2003cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*
microsoftoffice2004cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
microsoftofficexpcpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
microsoftword2000cpe:2.3:a:microsoft:word:2000:*:*:*:*:*:*:*
microsoftword2002cpe:2.3:a:microsoft:word:2002:*:*:*:*:*:*:*
microsoftword2003cpe:2.3:a:microsoft:word:2003:*:*:*:*:*:*:*
microsoftword_viewer2003cpe:2.3:a:microsoft:word_viewer:2003:*:*:*:*:*:*:*
microsoftworks2004cpe:2.3:a:microsoft:works:2004:*:*:*:*:*:*:*
microsoftworks2005cpe:2.3:a:microsoft:works:2005:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	office	2000	cpe:2.3:a:microsoft:office:2000:sp3::::::
microsoft	office	2003	cpe:2.3:a:microsoft:office:2003:sp2::::::
microsoft	office	2004	cpe:2.3:a:microsoft:office:2004::mac:::::
microsoft	office	xp	cpe:2.3:a:microsoft:office:xp:sp3::::::
microsoft	word	2000	cpe:2.3:a:microsoft:word:2000:::::::*
microsoft	word	2002	cpe:2.3:a:microsoft:word:2002:::::::*
microsoft	word	2003	cpe:2.3:a:microsoft:word:2003:::::::*
microsoft	word_viewer	2003	cpe:2.3:a:microsoft:word_viewer:2003:::::::*
microsoft	works	2004	cpe:2.3:a:microsoft:works:2004:::::::*
microsoft	works	2005	cpe:2.3:a:microsoft:works:2005:::::::*