Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2006-3647
HistoryOct 10, 2006 - 10:07 p.m.

CVE-2006-3647

2006-10-1022:07:00
CWE-189
[email protected]
web.nvd.nist.gov
21
cve-2006-3647
microsoft word
integer overflow
code execution
remote code execution
nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.621 Medium

EPSS

Percentile

97.8%

JSON

Integer overflow in Microsoft Word 2000, 2002, 2003, 2004 for Mac, and v.X for Mac allows remote user-assisted attackers to execute arbitrary code via a crafted string in a Word document, which overflows a 16-bit integer length value, aka “Memmove Code Execution,” a different vulnerability than CVE-2006-3651 and CVE-2006-4693.

Affected configurations

NVD
Node
microsoftofficeMatch2000
OR
microsoftofficeMatch2000ja
OR
microsoftofficeMatch2000ko
OR
microsoftofficeMatch2000zh
OR
microsoftofficeMatch2000sp1
OR
microsoftofficeMatch2000sp2
OR
microsoftofficeMatch2000sp3
OR
microsoftofficeMatch2001
OR
microsoftofficeMatch2001mac_os_x
OR
microsoftofficeMatch2001sr1mac_os_x
OR
microsoftofficeMatch2003student_teacher
OR
microsoftofficeMatch2003sp1
OR
microsoftofficeMatch2003sp2
OR
microsoftofficeMatch2003sp3
OR
microsoftofficeMatch2004mac_os_x
OR
microsoftofficeMatchv.x

Related

cve 2
nvd 3
cvelist 3
nessus 2
securityvulns 3
cert 1
cve
cve
CVE-2006-3651
2006-10-10 22:07:00
CVE-2006-4693
2006-10-10 22:07:00
nvd
nvd
CVE-2006-3647
2006-10-10 22:07:00
CVE-2006-4693
2006-10-10 22:07:00
CVE-2006-3651
2006-10-10 22:07:00
cvelist
cvelist
CVE-2006-4693
2006-10-10 22:00:00
CVE-2006-3651
2006-10-10 22:00:00
CVE-2006-3647
2006-10-10 22:00:00
nessus
nessus
MS06-060: Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (924554)
2006-10-10 00:00:00
MS06-058 / MS06-059 / MS06-0060 / MS06-062: Vulnerabilities in Microsoft Office Allow Remote Code Execution (924163 / 924164 / 924554 / 922581) (Mac OS X)
2006-10-11 00:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS06-060 Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (924554)
2006-10-11 00:00:00
[Full-disclosure] MS06-060 Microsoft Word Memmove Code Execution
2006-10-12 00:00:00
MS06-060 Microsoft Word Memmove Code Execution
2006-10-13 00:00:00
cert
cert
Microsoft Word vulnerable to remote code execution
2006-10-12 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.621 Medium

EPSS

Percentile

97.8%

JSON
Related for CVE-2006-3647
cve2nvd3cvelist3nessus2securityvulns3cert1