Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMicrosoftCVE-2006-1318
HistorySep 19, 2014 - 10:55 a.m.

CVE-2006-1318

2014-09-1910:55:03
CWE-94
microsoft
web.nvd.nist.gov
23
microsoft office
remote code execution
cve-2006-1318
security vulnerability
office document

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.229

Percentile

96.6%

JSON

Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, Office 2004 for Mac, and Office X for Mac do not properly parse record lengths, which allows remote attackers to execute arbitrary code via a malformed control in an Office document, aka “Microsoft Office Control Vulnerability.”

Affected configurations

Nvd
Node
microsoftofficeMatch2000sp1
OR
microsoftofficeMatch2000sp2
OR
microsoftofficeMatch2004mac
OR
microsoftofficeMatchxmac
OR
microsoftofficeMatchxpsp3
VendorProductVersionCPE
microsoftoffice2000cpe:2.3:a:microsoft:office:2000:sp1:*:*:*:*:*:*
microsoftoffice2000cpe:2.3:a:microsoft:office:2000:sp2:*:*:*:*:*:*
microsoftoffice2004cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
microsoftofficexcpe:2.3:a:microsoft:office:x:*:mac:*:*:*:*:*
microsoftofficexpcpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*

Related

nvd 1
prion 1
cvelist 1
nessus 2
nvd
nvd
CVE-2006-1318
2014-09-19 10:55:03
prion
prion
Design/Logic Flaw
2014-09-19 10:55:00
cvelist
cvelist
CVE-2006-1318
2014-09-19 10:00:00
nessus
nessus
MS06-038: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (917284)
2006-07-11 00:00:00
MS06-037 / MS06-038: Vulnerabilities in Microsoft Excel and Office Could Allow Remote Code Execution (917284 / 917285) (Mac OS X)
2006-07-11 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.229

Percentile

96.6%

JSON
Related for CVE-2006-1318
nvd1prion1cvelist1nessus2