CVE-2006-1311 - CVE Reference - Advisories

CVE Reference: CVE-2006-1311

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1311

Description: The RichEdit component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1; Office 2000 SP3, XP SP3, 2003 SP2, and Office 2004 for Mac; and Learning Essentials for Microsoft Office 1.0, 1.1, and 1.5 allows user-assisted remote attackers to execute arbitrary code via a malformed OLE object in an RTF file, which triggers memory corruption.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/30592 ST 1017641 1017640 SAID Secunia Advisory: SA24152 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1090 OSVDB 31886 MS http://www.microsoft.com/technet/security/Bulletin/MS07-013.mspx CERT-VN 368132 CERT http://www.us-cert.gov/cas/techalerts/TA07-044A.html BID 21876

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	OpenOffice "rtl_allocateMe mory()" Truncation Vulnerability

2.	HP-UX update for Apache

3.	Red Hat Directory Server Multiple Vulnerabilities

4.	Red Hat Directory Server Denial of Service Vulnerabilities

5.	Tiger "genmsgidx" Insecure Temporary Files

6.	JustSystems Ichitaro Products Unspecified Code Execution Vulnerability

7.	Red Hat update for tomcat

8.	R "javareconf" Insecure Temporary Files

9.	Citadel "migrate_aliase s.sh" Insecure Temporary Files

10.	Mono Sys.Web HTTP Header Injection Vulnerability