Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0009

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2006-0009
Last Modified 07 Mar 2011 09:29:09
Published 14 Mar 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-0009

Summary

Buffer overflow in Microsoft Office 2000 SP3, XP SP3, and other versions and packages, allows user-assisted attackers to execute arbitrary code via a routing slip that is longer than specified by the provided length field, as exploited by malware such as TROJ_MDROPPER.BH and Trojan.PPDropper.E in attacks against PowerPoint.

Vulnerable Systems

Application

  • Microsoft Office 2000

  • Microsoft Office 2003

  • Microsoft Office 2004

  • Microsoft Office V.x

  • Microsoft Office Xp

  • Microsoft Works 2000

  • Microsoft Works 2001

  • Microsoft Works 2002

  • Microsoft Works 2003

  • Microsoft Works 2004

  • Microsoft Works 2005

  • Microsoft Works 2006


References

CERT - TA06-073A

CERT-VN - VU#682820

BID - 17000

BUGTRAQ - 20060314 SYMSA-2006-001: Buffer overflow in Microsoft Office 2000, Office XP (2002), and Office 2003 Routing Slip Metadata

MS - MS06-012

SECTRACK - 1015766

SECUNIA - 19138

XF - powerpoint-presentation-code-execution(29009)

XF - office-routing-slip-bo(25009)

VUPEN - ADV-2006-3678

VUPEN - ADV-2006-0950

MISC - http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=TROJ%5FMDROPPER%2EBH

MISC - http://www.symantec.com/security_response/writeup.jsp?docid=2006-091810-5028-99

MISC - http://www.symantec.com/enterprise/research/SYMSA-2006-001.txt

BID - 20059

BUGTRAQ - 20060919 Microsoft PowerPoint 0-day Vulnerability FAQ - September written

BUGTRAQ - 20060919 New PowerPoint 0-day Trojan in the wild

BUGTRAQ - 20060822 Major updates in PowerPoint FAQ document - not a 0-day issue

BUGTRAQ - 20060819 New PowerPoint 0-day and Trojan - FAQ document ready

BUGTRAQ - 20060422 PowerPoint Phishing Trojan

OSVDB - 23903

MISC - http://www.darkreading.com/document.asp?doc_id=101970

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm

SECTRACK - 1016886

SECTRACK - 1016720

SECUNIA - 19238

MISC - http://isc.sans.org/diary.php?storyid=1618

MISC - http://blogs.securiteam.com/?p=559

MISC - http://blogs.securiteam.com/?p=557

MISC - http://blogs.securiteam.com/?author=28

Related Patches

MS06-012 905413 915057 Microsoft Office 2004 for Mac Update 11.2.3 (Rev 7)


Last Updated: 27 May 2016 10:41:29