5.1

CVE-2006-0009

Buffer overflow in Microsoft Office 2000 SP3, XP SP3, and other versions and packages, allows user-assisted attackers to execute arbitrary code via a routing slip that is longer than specified by the provided length field, as exploited by malware such as TROJ_MDROPPER.BH and Trojan.PPDropper.E in attacks against PowerPoint.

Data is provided by the National Vulnerability Database (NVD)
MicrosoftOffice Version2000 Updatesp3
MicrosoftOffice Version2003 Updatesp1
MicrosoftOffice Version2003 Updatesp2
MicrosoftOffice Version2004 Editionmac
MicrosoftOffice Versionv.x Editionmac
MicrosoftOffice Versionxp Updatesp3
MicrosoftWorks Version2000
MicrosoftWorks Version2001
MicrosoftWorks Version2002
MicrosoftWorks Version2003
MicrosoftWorks Version2004
MicrosoftWorks Version2005
MicrosoftWorks Version2006
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 62.23% 0.983
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5.1 4.9 6.4
AV:N/AC:H/Au:N/C:P/I:P/A:P
http://www.us-cert.gov/cas/techalerts/TA06-073A.html
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/682820
Third Party Advisory
US Government Resource