9.3

CVE-2006-3650

Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac do not properly parse the length of a chart record, which allows remote user-assisted attackers to execute arbitrary code via a Word document with an embedded malformed chart record that triggers an overwrite of pointer values with values from the document, a different vulnerability than CVE-2006-3434, CVE-2006-3864, and CVE-2006-3868.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftOffice Version2000
MicrosoftOffice Version2000 Langja
MicrosoftOffice Version2000 Langko
MicrosoftOffice Version2000 Langzh
MicrosoftOffice Version2000 Updatesp1
MicrosoftOffice Version2000 Updatesp2
MicrosoftOffice Version2000 Updatesp3
MicrosoftOffice Version2001
MicrosoftOffice Version2001 SwPlatformmac_os
MicrosoftOffice Version2001 Updatesr1 SwPlatformmac_os
MicrosoftOffice Version2003
MicrosoftOffice Version2003 Updatesp1
MicrosoftOffice Version2003 Updatesp2
MicrosoftOffice Version2003 Updatesp3
MicrosoftOffice Version2004 SwPlatformmac_os
MicrosoftOffice Versionv.x
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 36.79% 0.983
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

http://www.securityfocus.com/archive/1/449179/100/0/threaded
http://secunia.com/advisories/22339
Vendor Advisory
http://securitytracker.com/id?1017034
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2006/3981
Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-062
http://www.kb.cert.org/vuls/id/534276
Third Party Advisory
US Government Resource
http://www.osvdb.org/29428
Broken Link
http://www.securityfocus.com/archive/1/448151/100/0/threaded
http://www.securityfocus.com/bid/20383
Third Party Advisory
VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-06-034.html
Third Party Advisory
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A222
Third Party Advisory