RCE in Microsoft Access
CVE-2006-3877
Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via an unspecified "crafted file," a different…
Vulnerability class: RCE (Remote Code Execution)
EPSS: 0.122 (95.6th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Access — versions 2000, 2002, 2003
- Microsoft Excel — versions 2000, 2002, 2003
- Microsoft Excel_viewer — versions 2003
- Microsoft Frontpage — versions 2000, 2002, 2003
- Microsoft Infopath — versions 2003
- Microsoft Office — versions 2000, 2003, 2004
- Microsoft Onenote — versions 2003
- Microsoft Outlook — versions 2000, 2002, 2003
- Microsoft Powerpoint — versions 2000, 2002, 2003
- Microsoft Project — versions 2000, 2002, 2003
Weakness classification (CWE)
References
- secure@microsoft.com (vdb-entry, x_refsource_BID)
- secure@microsoft.com (x_refsource_HP, vendor-advisory)
- secure@microsoft.com (US Government Resource, x_refsource_CERT-VN, third-party-advisory)
- secure@microsoft.com (x_refsource_OVAL, signature, vdb-entry)
- secure@microsoft.com (US Government Resource, x_refsource_CERT, third-party-advisory)
- secure@microsoft.com (x_refsource_MS, vendor-advisory)
- secure@microsoft.com (vdb-entry, x_refsource_VUPEN, Vendor Advisory)
- secure@microsoft.com (x_refsource_OVAL, signature, vdb-entry)
- secure@microsoft.com (x_refsource_MS, vendor-advisory)
- secure@microsoft.com (x_refsource_OSVDB, vdb-entry)