CVE-2006-0031 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-0031
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-0031

Description: Stack-based buffer overflow in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted attackers to execute arbitrary code via an Excel file with a malformed record with a modified length value, which leads to memory corruption.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/25228 VULNWATCH ST 1015766 SREASON http://securityreason.com/securityalert/589 SAID Secunia Advisory: SA19138 Secunia Advisory: SA19238 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:763 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1750 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1525 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1327 OSVDB 23902 MS http://www.microsoft.com/technet/security/bulletin/ms06-012.mspx FULLDISC http://archives.neohapsis.com/archives/fulldisclosure/2006-02/1521.html CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm CERT-VN 104302 CERT http://www.us-cert.gov/cas/techalerts/TA06-073A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/427699/100/0/threaded BID 17101

Return to the previous page.