5.1

CVE-2006-2387

EPSS 39.85%
Veröffentlicht 10.10.2006 22:07:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle secure@microsoft.com
Teams Watchlist Login
Unerledigt Login

Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, Excel Viewer 2003, and Microsoft Works Suite 2004 through 2006 allows user-assisted attackers to execute arbitrary code via a crafted DATETIME record in an XLS file, a different vulnerability than CVE-2006-3867 and CVE-2006-3875.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Office Version2000

Microsoft ≫ Office Version2000 Langja

Microsoft ≫ Office Version2000 Langko

Microsoft ≫ Office Version2000 Langzh

Microsoft ≫ Office Version2000 Updatesp1

Microsoft ≫ Office Version2000 Updatesp2

Microsoft ≫ Office Version2000 Updatesp3

Microsoft ≫ Office Version2001

Microsoft ≫ Office Version2001 Editionmacintosh

Microsoft ≫ Office Version2001 Editionmacos

Microsoft ≫ Office Version2001 Updatesr1 Editionmac_os

Microsoft ≫ Office Version2003

Microsoft ≫ Office Version2003 Updatesp1

Microsoft ≫ Office Version2003 Updatesp2

Microsoft ≫ Office Version2003 Updatesp3

Microsoft ≫ Office Version2004 Editionmac

Microsoft ≫ Office Versionv.x

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	39.85%	0.972

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.1	4.9	6.4	AV:N/AC:H/Au:N/C:P/I:P/A:P

http://www.securityfocus.com/archive/1/449179/100/0/threaded

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-059

http://securitytracker.com/id?1017031

Third Party Advisory

VDB Entry

http://www.kb.cert.org/vuls/id/706668

Third Party Advisory

US Government Resource

http://www.securityfocus.com/archive/1/448147/100/0/threaded

http://www.securityfocus.com/bid/20344

Third Party Advisory

VDB Entry

http://www.vupen.com/english/advisories/2006/3978

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-06-033.html

Third Party Advisory

VDB Entry

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A570

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2006-2387

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-2387

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-2387

EUVD