Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3059

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2006-3059
Last Modified 07 Mar 2011 12:00:00
Published 17 Jun 2006 09:18:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-3059

Summary

Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows remote user-assisted attackers to execute arbitrary code via unspecified vectors. NOTE: this is a different vulnerability than CVE-2006-3086.

Vulnerable Systems

Application

  • Microsoft Excel 2000

  • Microsoft Excel 2002

  • Microsoft Excel 2003

  • Microsoft Excel 2004

  • Microsoft Excel Viewer 2003


References

CERT - TA06-192A

CERT - TA06-167A

CERT-VN - VU#802324

XF - excel-unspecified-code-execution(27179)

VUPEN - ADV-2006-2755

VUPEN - ADV-2006-2361

BID - 18422

BUGTRAQ - 20060621 Excel 0-day FAQ updated with Microsoft advisory information

BUGTRAQ - 20060618 Microsoft Excel 0-day Vulnerability FAQ document written

OSVDB - 26527

MS - MS06-037

SECTRACK - 1016316

SECUNIA - 20686

MISC - http://isc.sans.org/diary.php?storyid=1420

CONFIRM - http://blogs.technet.com/msrc/archive/2006/06/16/436174.aspx

MISC - http://blogs.securiteam.com/?p=451

Related Patches

Apple 2006-07-11 Microsoft Office 2004 Update 11.2.5 (Rev 4)


Last Updated: 27 May 2016 10:42:52