CVE-2006-6456

high

Description

Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A746

https://exchange.xforce.ibmcloud.com/vulnerabilities/30806

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014

http://www.vupen.com/english/advisories/2007/0435

http://www.vupen.com/english/advisories/2006/4920

http://www.us-cert.gov/cas/techalerts/TA07-044A.html

http://www.securityfocus.com/bid/21518

http://www.securityfocus.com/archive/1/454093/100/0/threaded

http://www.securityfocus.com/archive/1/454072/100/0/threaded

http://www.securityfocus.com/archive/1/454069/100/0/threaded

http://www.osvdb.org/30825

http://www.kb.cert.org/vuls/id/166700

http://vil.mcafeesecurity.com/vil/content/v_vul27249.htm

http://vil.mcafeesecurity.com/vil/content/v_141056.htm

http://securitytracker.com/id?1017579

http://securitytracker.com/id?1017358

http://secunia.com/advisories/23205

http://isc.sans.org/diary.php?storyid=1925

http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx

http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0215.html

http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0199.html

Details

Source: Mitre, NVD

Published: 2006-12-11

Updated: 2018-10-17

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High