← Back

CVE-2006-3647

nvd nist
Published: Oct 10, 2006Modified: Apr 23, 2026

JSON object

Loading...
9.3
Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 8.6 / Impact: 10.0
Source: NVD

Description

Integer overflow in Microsoft Word 2000, 2002, 2003, 2004 for Mac, and v.X for Mac allows remote user-assisted attackers to execute arbitrary code via a crafted string in a Word document, which overflows a 16-bit integer length value, aka "Memmove Code Execution," a different vulnerability than CVE-2006-3651 and CVE-2006-4693.

Affected (16)

Products: Microsoft: Office
Microsoft
1 product
Office
Configuration A
16 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Office
Version 2000
Office
Version 2000
Office
Version 2000
Office
Version 2000
Office
Version 2000 sp1
Office
Version 2000 sp2
Office
Version 2000 sp3
Office
Version 2001
Office
Version 2001
Office
Version 2001 sr1
Office
Version 2003
Office
Version 2003 sp1
Office
Version 2003 sp2
Office
Version 2003 sp3
Office
Version 2004
Office
Version v.x

Related CWEs

CWE-189
CWE-189

References (18)

Source: secure@microsoft.com
Broken Link
Source: secure@microsoft.com
Third Party AdvisoryVDB Entry
Source: secure@microsoft.com
Broken Link
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
Third Party AdvisoryVDB Entry
Source: secure@microsoft.com
Vendor Advisory
Source: secure@microsoft.com
Source: secure@microsoft.com
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Timeline

No history available yet.