CVE-2006-6456Out-of-bounds Write in Microsoft Office

4 documents4 sources
Severity
9.3CRITICALNVD
EPSS
59.6%
top 1.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Microsoft OfficeMicrosoft WordMicrosoft Word Viewer+1 more
Timeline
PublishedDec 11
Latest updateMay 1

Description

Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages4 packages

NVDmicrosoft/word2000, 2002, 2003+2
NVDmicrosoft/works2004, 2005, 2006+2
NVDmicrosoft/office4 versions+3

🔴Vulnerability Details

3
GHSA
GHSA-r6v9-c7q3-4rcq: Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors2022-05-01
CVEList
CVE-2006-6456: Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors2006-12-11
VulnCheck
Word Malformed Data Structures Vulnerability2006
CVE-2006-6456 — Out-of-bounds Write in Microsoft Office | cvebase