[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-6456Date: (C)2006-12-11   (M)2023-12-22


Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1017358
SECTRACK-1017579
http://www.securityfocus.com/archive/1/archive/1/454069/100/0/threaded
20061210
http://www.securityfocus.com/archive/1/archive/1/454072/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/454093/100/0/threaded
BID-21518
SECUNIA-23205
OSVDB-30825
ADV-2006-4920
ADV-2007-0435
MS07-014
TA07-044A
VU#166700
http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx
http://isc.sans.org/diary.php?storyid=1925
http://vil.mcafeesecurity.com/vil/content/v_141056.htm
http://vil.mcafeesecurity.com/vil/content/v_vul27249.htm
word-unspec-code-execution(30806)

CPE    11
cpe:/a:microsoft:office:2000:sp3
cpe:/a:microsoft:office:xp:sp3
cpe:/a:microsoft:office:2003:sp2
cpe:/a:microsoft:word:2000
...
OVAL    1
oval:org.mitre.oval:def:746

© SecPod Technologies