Lucene search

[email protected]NVD:CVE-2006-6456

HistoryDec 11, 2006 - 5:28 p.m.

CVE-2006-6456

2006-12-1117:28:00

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.962

Percentile

99.5%

JSON

Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994.

Affected configurations

Nvd

Node

microsoftofficeMatch2000sp3

microsoftofficeMatch2003sp2

microsoftofficeMatch2004mac

microsoftofficeMatchxpsp3

microsoftwordMatch2000

microsoftwordMatch2002

microsoftwordMatch2003

microsoftword_viewerMatch2003

microsoftworksMatch2004

microsoftworksMatch2005

microsoftworksMatch2006

VendorProductVersionCPE
microsoftoffice2000cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*
microsoftoffice2003cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*
microsoftoffice2004cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
microsoftofficexpcpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
microsoftword2000cpe:2.3:a:microsoft:word:2000:*:*:*:*:*:*:*
microsoftword2002cpe:2.3:a:microsoft:word:2002:*:*:*:*:*:*:*
microsoftword2003cpe:2.3:a:microsoft:word:2003:*:*:*:*:*:*:*
microsoftword_viewer2003cpe:2.3:a:microsoft:word_viewer:2003:*:*:*:*:*:*:*
microsoftworks2004cpe:2.3:a:microsoft:works:2004:*:*:*:*:*:*:*
microsoftworks2005cpe:2.3:a:microsoft:works:2005:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	office	2000	cpe:2.3:a:microsoft:office:2000:sp3::::::
microsoft	office	2003	cpe:2.3:a:microsoft:office:2003:sp2::::::
microsoft	office	2004	cpe:2.3:a:microsoft:office:2004::mac:::::
microsoft	office	xp	cpe:2.3:a:microsoft:office:xp:sp3::::::
microsoft	word	2000	cpe:2.3:a:microsoft:word:2000:::::::*
microsoft	word	2002	cpe:2.3:a:microsoft:word:2002:::::::*
microsoft	word	2003	cpe:2.3:a:microsoft:word:2003:::::::*
microsoft	word_viewer	2003	cpe:2.3:a:microsoft:word_viewer:2003:::::::*
microsoft	works	2004	cpe:2.3:a:microsoft:works:2004:::::::*
microsoft	works	2005	cpe:2.3:a:microsoft:works:2005:::::::*

Rows per page:

1-10 of 111

References

archives.neohapsis.com/archives/fulldisclosure/2006-12/0199.html

archives.neohapsis.com/archives/fulldisclosure/2006-12/0215.html

blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx

isc.sans.org/diary.php?storyid=1925

secunia.com/advisories/23205

securitytracker.com/id?1017358

securitytracker.com/id?1017579

vil.mcafeesecurity.com/vil/content/v_141056.htm

vil.mcafeesecurity.com/vil/content/v_vul27249.htm

www.kb.cert.org/vuls/id/166700

www.osvdb.org/30825

www.securityfocus.com/archive/1/454069/100/0/threaded

www.securityfocus.com/archive/1/454072/100/0/threaded

www.securityfocus.com/archive/1/454093/100/0/threaded

www.securityfocus.com/bid/21518

www.us-cert.gov/cas/techalerts/TA07-044A.html

www.vupen.com/english/advisories/2006/4920

www.vupen.com/english/advisories/2007/0435

docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014

exchange.xforce.ibmcloud.com/vulnerabilities/30806

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A746

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.962

Percentile

99.5%

JSON

Related for NVD:CVE-2006-6456

cve6 cvelist5 nvd5 prion3 securityvulns3 cert2 checkpoint_advisories1 nessus2