CVE-2006-0028 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-0028
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-0028

Description: Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted attackers to execute arbitrary code via a BIFF parsing format file containing malformed BOOLERR records that lead to memory corruption, probably involving invalid pointers.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/25225 ST 1015766 SREASON http://securityreason.com/securityalert/583 SAID Secunia Advisory: SA19238 Secunia Advisory: SA19138 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1635 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1509 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1411 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1158 OSVDB 23899 MS http://www.microsoft.com/technet/security/bulletin/ms06-012.mspx MISC http://www.zerodayinitiative.com/advisories/ZDI-06-004.html CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm CERT-VN 339878 CERT http://www.us-cert.gov/cas/techalerts/TA06-073A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/427632/100/0/threaded

Return to the previous page.