admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-29 01:31:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2006/CVE-2006-36xx/CVE-2006-3650.json

208 lines
7.2 KiB
JSON
Raw Normal View History

bootstrap
2023-04-24 12:24:31 +02:00
{
"id": "CVE-2006-3650",
"sourceIdentifier": "secure@microsoft.com",
"published": "2006-10-10T22:07:00.000",
"lastModified": "2018-10-30T16:25:26.903",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac do not properly parse the length of a chart record, which allows remote user-assisted attackers to execute arbitrary code via a Word document with an embedded malformed chart record that triggers an overwrite of pointer values with values from the document, a different vulnerability than CVE-2006-3434, CVE-2006-3864, and CVE-2006-3868."
},
{
"lang": "es",
"value": "Microsoft Office 2000, XP, 2003, 2004 para Mac, y v.X para Mac no analiza adecuadamente la longitud de un registro de un gr\u00e1fico, lo cual permite a atacantes remotos con la intervenci\u00f3n del usuario ejecutar c\u00f3digo de su elecci\u00f3n mediante un documento Word con un registro de gr\u00e1fico mal formado que dispara la sobrescritura de los valores de punteros con valores del documento, una vulnerabilidad diferente que CVE-2006-3434, CVE-2006-3864, y CVE-2006-3868."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3
},
"baseSeverity": "HIGH",
"exploitabilityScore": 8.6,
"impactScore": 10.0,
"acInsufInfo": false,
"obtainAllPrivilege": true,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": true
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-94"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2000:*:*:*:*:*:*:*",
"matchCriteriaId": "A9A82D13-513C-46FA-AF51-0582233E230A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2000:*:*:ja:*:*:*:*",
"matchCriteriaId": "757EC6C1-F5E2-45CD-9F7F-7760ECEDC842"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2000:*:*:ko:*:*:*:*",
"matchCriteriaId": "59B1B68C-86F1-4FA4-9F82-3E8761ED1E74"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2000:*:*:zh:*:*:*:*",
"matchCriteriaId": "716DDA05-D094-4837-852C-0511CDDD5ABC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2000:sp1:*:*:*:*:*:*",
"matchCriteriaId": "3C54DDAF-8D7F-4A7D-9186-6048D4C850B2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2000:sp2:*:*:*:*:*:*",
"matchCriteriaId": "67388076-420D-4327-A436-329177EA6F42"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*",
"matchCriteriaId": "4891122F-AD7F-45E6-98C6-833227916F6B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2001:*:*:*:*:*:*:*",
"matchCriteriaId": "64B3099E-DFA0-4C7E-B016-370028BF8387"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2001:*:*:*:*:mac_os:*:*",
"matchCriteriaId": "43AE142C-E7AD-418E-BA9B-887285EE9620"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2001:sr1:*:*:*:mac_os:*:*",
"matchCriteriaId": "23E6544C-3695-45E6-A8AD-2F3A3B574915"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2003:*:*:*:*:*:*:*",
"matchCriteriaId": "DB7EA4CC-E705-42DB-86B6-E229DA36B66D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2003:sp1:*:*:*:*:*:*",
"matchCriteriaId": "4EED9D78-AE73-44BA-A1CE-603994E92E89"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*",
"matchCriteriaId": "07D3F3E4-93FB-481A-94D9-075E726697C4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2003:sp3:*:*:*:*:*:*",
"matchCriteriaId": "A332D04D-CC8C-4F68-A261-BA2F2D8EAD1E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2004:*:*:*:*:mac_os:*:*",
"matchCriteriaId": "C548E35A-C9DF-4784-824A-EEBB693CD388"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:v.x:*:*:*:*:*:*:*",
"matchCriteriaId": "310DF9B3-3494-4BD4-8A9D-82211EA6C518"
}
]
}
]
}
],
"references": [
{
"url": "http://securitytracker.com/id?1017034",
"source": "secure@microsoft.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "http://www.kb.cert.org/vuls/id/534276",
"source": "secure@microsoft.com",
"tags": [
"Third Party Advisory",
"US Government Resource"
]
},
{
"url": "http://www.securityfocus.com/archive/1/448151/100/0/threaded",
"source": "secure@microsoft.com"
},
{
"url": "http://www.securityfocus.com/archive/1/449179/100/0/threaded",
"source": "secure@microsoft.com"
},
{
"url": "http://www.securityfocus.com/bid/20383",
"source": "secure@microsoft.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "http://www.vupen.com/english/advisories/2006/3981",
"source": "secure@microsoft.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.zerodayinitiative.com/advisories/ZDI-06-034.html",
"source": "secure@microsoft.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-062",
"source": "secure@microsoft.com"
},
{
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A222",
"source": "secure@microsoft.com",
"tags": [
"Third Party Advisory"
]
}
]
}
Reference in New Issue Copy Permalink