CVE-2006-6456

Sažetak

Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0199.html
http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0215.html
http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx
http://isc.sans.org/diary.php?storyid=1925
http://secunia.com/advisories/23205
http://securitytracker.com/id?1017358
http://securitytracker.com/id?1017579
http://vil.mcafeesecurity.com/vil/content/v_141056.htm
http://vil.mcafeesecurity.com/vil/content/v_vul27249.htm
http://www.kb.cert.org/vuls/id/166700
http://www.osvdb.org/30825
http://www.securityfocus.com/archive/1/454069/100/0/threaded
http://www.securityfocus.com/archive/1/454072/100/0/threaded
http://www.securityfocus.com/archive/1/454093/100/0/threaded
http://www.securityfocus.com/bid/21518
http://www.us-cert.gov/cas/techalerts/TA07-044A.html
http://www.vupen.com/english/advisories/2006/4920
http://www.vupen.com/english/advisories/2007/0435
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014
https://exchange.xforce.ibmcloud.com/vulnerabilities/30806
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A746

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

17-10-2018 - 21:48

Objavljeno

11-12-2006 - 17:28