cbcvebase.
CVE-2006-1311
published 2007-02-13

CVE-2006-1311: The RichEdit component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1; Office 2000 SP3, XP SP3, 2003 SP2, and Office 2004 for Mac; and Learning Essentials…

PriorityP353critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
31.10%
98.0th percentile
The RichEdit component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1; Office 2000 SP3, XP SP3, 2003 SP2, and Office 2004 for Mac; and Learning Essentials for Microsoft Office 1.0, 1.1, and 1.5 allows user-assisted remote attackers to execute arbitrary code via a malformed OLE object in an RTF file, which triggers memory corruption.

Affected

7 ranges
VendorProductVersion rangeFixed in
microsoftlearning_essentials
microsoftlearning_essentials
microsoftlearning_essentials
microsoftoffice
microsoftoffice
microsoftoffice
microsoftwindows_2003_server
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.