CVE-2006-1318

Description

Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, Office 2004 for Mac, and Office X for Mac do not properly parse record lengths, which allows remote attackers to execute arbitrary code via a malformed control in an Office document, aka "Microsoft Office Control Vulnerability."

References

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-038

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3