Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-3059 — Microsoft Excel vulnerability

5 documents5 sources

Severity

9.3CRITICALNVD

EPSS

75.4%

top 1.11%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Excel Microsoft Excel Viewer

Timeline

PublishedJun 17

Latest updateMay 1

Description

Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows remote user-assisted attackers to execute arbitrary code via unspecified vectors. NOTE: this is a different vulnerability than CVE-2006-3086.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

▶NVDmicrosoft/excel4 versions+3

▶NVDmicrosoft/excel_viewer2003

🔴Vulnerability Details

GHSA

GHSA-qfq4-v5cr-vvr4: Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows remote user-assisted attackers to execute arbitrary code via unspecified vectors↗2022-05-01

▶

CVEList

CVE-2006-3059: Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows remote user-assisted attackers to execute arbitrary code via unspecified vectors↗2006-06-17

▶

VulnCheck

Microsoft Excel Malformed file Vulnerability↗2006

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Excel - Code Execution↗2006-06-22

▶