CVE-2006-0002

Опубликовано: 10 янв. 2006

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

Unspecified vulnerability in Microsoft Outlook 2000 through 2003, Exchange 5.0 Server SP2 and 5.5 SP4, Exchange 2000 SP3, and Office allows remote attackers to execute arbitrary code via an e-mail message with a crafted Transport Neutral Encapsulation Format (TNEF) MIME attachment, related to message length validation.

Ссылки

http://secunia.com/advisories/18368
Patch
Third Party Advisory
http://securityreason.com/securityalert/330
Third Party Advisory
http://securityreason.com/securityalert/331
Third Party Advisory
http://securitytracker.com/id?1015460
Patch
Third Party Advisory
VDB Entry
http://securitytracker.com/id?1015461
Patch
Third Party Advisory
VDB Entry
http://support.avaya.com/elmodocs2/security/ASA-2006-004.htm
Third Party Advisory
http://www.kb.cert.org/vuls/id/252146
Third Party Advisory
US Government Resource
http://www.securityfocus.com/archive/1/421518/100/0/threaded
Third Party Advisory
VDB Entry
http://www.securityfocus.com/archive/1/421520/100/0/threaded
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/16197
Patch
Third Party Advisory
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA06-010A.html
Patch
Third Party Advisory
US Government Resource
http://www.vupen.com/english/advisories/2006/0119
Permissions Required
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-003
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/22878
Third Party Advisory
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1082
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1165
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1316
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1456
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1485
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A624
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:exchange_server:5.0:-:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:5.0:sp1:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:5.0:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:5.5:-:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:5.5:sp1:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:5.5:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:5.5:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:5.5:sp4:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:2000:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2003:sp1:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:outlook:2000:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:outlook:2002:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:outlook:2003:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.45632

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-pq9r-2xxh-vvh7

github

почти 4 года назад