{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-12-10T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20061211 The newest Word flaw is due to malformed data structure handling", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0215.html"}, {"name": "oval:org.mitre.oval:def:746", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A746"}, {"name": "1017579", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017579"}, {"tags": ["x_refsource_MISC"], "url": "http://vil.mcafeesecurity.com/vil/content/v_vul27249.htm"}, {"name": "23205", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/23205"}, {"tags": ["x_refsource_MISC"], "url": "http://isc.sans.org/diary.php?storyid=1925"}, {"name": "20061210 Another, different MS Word 0-day vulnerability reported", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/454069/100/0/threaded"}, {"name": "21518", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/21518"}, {"name": "20061211 The newest Word flaw is due to malformed data structure handling", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/454093/100/0/threaded"}, {"name": "ADV-2007-0435", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/0435"}, {"name": "30825", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/30825"}, {"name": "TA07-044A", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/cas/techalerts/TA07-044A.html"}, {"name": "word-unspec-code-execution(30806)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30806"}, {"tags": ["x_refsource_MISC"], "url": "http://vil.mcafeesecurity.com/vil/content/v_141056.htm"}, {"name": "20061210 Another, different MS Word 0-day vulnerability reported", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0199.html"}, {"name": "MS07-014", "tags": ["vendor-advisory", "x_refsource_MS"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014"}, {"name": "VU#166700", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/166700"}, {"name": "ADV-2006-4920", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/4920"}, {"name": "20061210 Re: Another, different MS Word 0-day vulnerability reported", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/454072/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx"}, {"name": "1017358", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017358"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-6456", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20061211 The newest Word flaw is due to malformed data structure handling", "refsource": "FULLDISC", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0215.html"}, {"name": "oval:org.mitre.oval:def:746", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A746"}, {"name": "1017579", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017579"}, {"name": "http://vil.mcafeesecurity.com/vil/content/v_vul27249.htm", "refsource": "MISC", "url": "http://vil.mcafeesecurity.com/vil/content/v_vul27249.htm"}, {"name": "23205", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/23205"}, {"name": "http://isc.sans.org/diary.php?storyid=1925", "refsource": "MISC", "url": "http://isc.sans.org/diary.php?storyid=1925"}, {"name": "20061210 Another, different MS Word 0-day vulnerability reported", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/454069/100/0/threaded"}, {"name": "21518", "refsource": "BID", "url": "http://www.securityfocus.com/bid/21518"}, {"name": "20061211 The newest Word flaw is due to malformed data structure handling", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/454093/100/0/threaded"}, {"name": "ADV-2007-0435", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/0435"}, {"name": "30825", "refsource": "OSVDB", "url": "http://www.osvdb.org/30825"}, {"name": "TA07-044A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA07-044A.html"}, {"name": "word-unspec-code-execution(30806)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30806"}, {"name": "http://vil.mcafeesecurity.com/vil/content/v_141056.htm", "refsource": "MISC", "url": "http://vil.mcafeesecurity.com/vil/content/v_141056.htm"}, {"name": "20061210 Another, different MS Word 0-day vulnerability reported", "refsource": "FULLDISC", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0199.html"}, {"name": "MS07-014", "refsource": "MS", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014"}, {"name": "VU#166700", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/166700"}, {"name": "ADV-2006-4920", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/4920"}, {"name": "20061210 Re: Another, different MS Word 0-day vulnerability reported", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/454072/100/0/threaded"}, {"name": "http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx", "refsource": "CONFIRM", "url": "http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx"}, {"name": "1017358", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017358"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T20:26:46.587Z"}, "title": "CVE Program Container", "references": [{"name": "20061211 The newest Word flaw is due to malformed data structure handling", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0215.html"}, {"name": "oval:org.mitre.oval:def:746", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A746"}, {"name": "1017579", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1017579"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://vil.mcafeesecurity.com/vil/content/v_vul27249.htm"}, {"name": "23205", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/23205"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://isc.sans.org/diary.php?storyid=1925"}, {"name": "20061210 Another, different MS Word 0-day vulnerability reported", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/454069/100/0/threaded"}, {"name": "21518", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/21518"}, {"name": "20061211 The newest Word flaw is due to malformed data structure handling", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/454093/100/0/threaded"}, {"name": "ADV-2007-0435", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/0435"}, {"name": "30825", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/30825"}, {"name": "TA07-044A", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.us-cert.gov/cas/techalerts/TA07-044A.html"}, {"name": "word-unspec-code-execution(30806)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30806"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://vil.mcafeesecurity.com/vil/content/v_141056.htm"}, {"name": "20061210 Another, different MS Word 0-day vulnerability reported", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0199.html"}, {"name": "MS07-014", "tags": ["vendor-advisory", "x_refsource_MS", "x_transferred"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014"}, {"name": "VU#166700", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/166700"}, {"name": "ADV-2006-4920", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/4920"}, {"name": "20061210 Re: Another, different MS Word 0-day vulnerability reported", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/454072/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx"}, {"name": "1017358", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1017358"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-6456", "datePublished": "2006-12-11T17:00:00", "dateReserved": "2006-12-11T00:00:00", "dateUpdated": "2024-08-07T20:26:46.587Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*", "matchCriteriaId": "4891122F-AD7F-45E6-98C6-833227916F6B", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*", "matchCriteriaId": "07D3F3E4-93FB-481A-94D9-075E726697C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*", "matchCriteriaId": "9409A9BD-1E9B-49B8-884F-8FE569D8AA25", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*", "matchCriteriaId": "79BA1175-7F02-4435-AEA6-1BA8AADEB7EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:word:2000:*:*:*:*:*:*:*", "matchCriteriaId": "AEBFF713-0884-43BF-9AB8-777664FD64AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:word:2002:*:*:*:*:*:*:*", "matchCriteriaId": "2D90B1E1-23CD-4595-AD78-DA1758E9896D", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:word:2003:*:*:*:*:*:*:*", "matchCriteriaId": "379C2A4A-78EF-473D-954B-F5DD76C3D6CF", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:word_viewer:2003:*:*:*:*:*:*:*", "matchCriteriaId": "1889A686-9565-4958-99BB-2EC24ABDF272", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:works:2004:*:*:*:*:*:*:*", "matchCriteriaId": "F98B6FDD-E9AA-49A4-8D9C-422DF5520A66", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:works:2005:*:*:*:*:*:*:*", "matchCriteriaId": "CB8E7A05-97EE-40A4-A410-B2DE582AA381", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:works:2006:*:*:*:*:*:*:*", "matchCriteriaId": "8C180D46-EEFE-416B-AB4D-A7EF0B749105", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Microsoft Word 2000, 2002, y 2003 y Word Viewer 2003 permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de vectores no especificados relacionados con estructuras de datos mal formadas que disparan una corrupci\u00f3n de memoria, una vulnerabilidad distinta de CVE-2006-5994."}], "id": "CVE-2006-6456", "lastModified": "2018-10-17T21:48:13.487", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-12-11T17:28:00.000", "references": [{"source": "cve@mitre.org", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0199.html"}, {"source": "cve@mitre.org", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0215.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://isc.sans.org/diary.php?storyid=1925"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/23205"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1017358"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1017579"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://vil.mcafeesecurity.com/vil/content/v_141056.htm"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://vil.mcafeesecurity.com/vil/content/v_vul27249.htm"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/166700"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/30825"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/454069/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/454072/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/454093/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/21518"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA07-044A.html"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/4920"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/0435"}, {"source": "cve@mitre.org", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-014"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30806"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A746"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}