CVE-2006-3059

Properties

Published:
16.06.2006
Updated:
23.06.2006
Patch available:
Severity:
Medium
CVSS vector:
(AV:R/AC:H/Au:NR/C:P/I:P/A:P/B:N)
Product:
Microsoft: Excel
Microsoft: Excel
Microsoft: Excel
Microsoft: Excel
Microsoft: Excel
Microsoft: Excel
Microsoft: Excel
Microsoft: Excel
Microsoft: Excel
Microsoft: Excel
Microsoft: Excel
Microsoft: Excel

Vulnerability description

Unspecified vulnerability in Microsoft Excel allows remote user-complicit attackers to execute arbitrary code via unspecified vectors.  NOTE: as of 20060616, there is vague information about this vulnerability, although it is known that it is new.  Also, as of 20060618, it is not clear whether this is the same issue as CVE-2006-3086.

References:

http://blogs.technet.com/msrc/archive/2006/06/16/436174.aspx: http://blogs.technet.com/msrc/archive/2006/06/16/436174.aspx
CERT-VN: http://www.kb.cert.org/vuls/id/802324
BID: http://www.securityfocus.com/bid/18422
FRSIRT: http://www.frsirt.com/english/advisories/2006/2361
SECTRACK: http://securitytracker.com/id?1016316
SECUNIA: http://secunia.com/advisories/20686
CERT: http://www.us-cert.gov/cas/techalerts/TA06-167A.html
http://isc.sans.org/diary.php?storyid=1420: http://isc.sans.org/diary.php?storyid=1420
OSVDB: http://www.osvdb.org/26527
XF: http://xforce.iss.net/xforce/xfdb/27179
BUGTRAQ: http://www.securityfocus.com/archive/1/archive/1/437636/100/0/threaded
http://blogs.securiteam.com/?p=451: http://blogs.securiteam.com/?p=451