CVE - CVE-2006-5994

CVE-ID
CVE-2006-5994	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Unspecified vulnerability in Microsoft Word 2000 and 2002, Office Word and Word Viewer 2003, Word 2004 and 2004 v. X for Mac, and Works 2004, 2005, and 2006 allows remote attackers to execute arbitrary code via a Word document with a malformed string that triggers memory corruption, a different vulnerability than CVE-2006-6456.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:21451 URL:http://www.securityfocus.com/bid/21451 BUGTRAQ:20061206 Microsoft 0-day word vulnerability - Secunia - Extremely critical URL:http://www.securityfocus.com/archive/1/453735/100/0/threaded BUGTRAQ:20061208 Microsoft Word 0-day Vulnerability FAQ (CVE-2006-5994) written URL:http://www.securityfocus.com/archive/1/453906/100/0/threaded BUGTRAQ:20061210 Several updates in Microsoft Word 0-day (CVE-2006-5994) FAQ document URL:http://www.securityfocus.com/archive/1/454061/100/0/threaded CERT:TA07-044A URL:http://www.us-cert.gov/cas/techalerts/TA07-044A.html CERT-VN:VU#167928 URL:http://www.kb.cert.org/vuls/id/167928 CONFIRM:http://blogs.technet.com/msrc/archive/2006/12/06/microsoft-security-advisory-929433-posted.aspx CONFIRM:http://www.microsoft.com/technet/security/advisory/929433.mspx MISC:http://blogs.securiteam.com/?p=759 MISC:http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9005698&intsrc=hm_list MS:MS07-014 URL:https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014 OSVDB:30824 URL:~~http://www.osvdb.org/30824~~ (Obsolete source) OVAL:oval:org.mitre.oval:def:238 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A238 SECTRACK:1017339 URL:http://securitytracker.com/id?1017339 SECUNIA:23232 URL:http://secunia.com/advisories/23232 VUPEN:ADV-2006-4866 URL:~~http://www.vupen.com/english/advisories/2006/4866~~ (Obsolete source) XF:word-unspecified-code-execution(30738) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/30738
Assigning CNA
Microsoft Corporation
Date Record Created
20061121	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20061121)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)