CVE-2006-2387 — Microsoft Excel vulnerability

6 documents2 sources

Severity

5.1MEDIUMNVD

EPSS

41.2%

top 2.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Excel Microsoft Excel Viewer Microsoft Office

Timeline

PublishedOct 10

Latest updateMay 1

Description

Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, Excel Viewer 2003, and Microsoft Works Suite 2004 through 2006 allows user-assisted attackers to execute arbitrary code via a crafted DATETIME record in an XLS file, a different vulnerability than CVE-2006-3867 and CVE-2006-3875.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages3 packages

▶NVDmicrosoft/excel_viewer2003

▶NVDmicrosoft/excel5 versions+4

▶NVDmicrosoft/office5 versions+4

🔴Vulnerability Details

GHSA

GHSA-4m34-pfrx-qv78: Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v↗2022-05-01

▶

GHSA

GHSA-8fr2-m6qv-rmxc: Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v↗2022-05-01

▶

GHSA

GHSA-p5xq-v8rf-773v: Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v↗2022-05-01

▶