VDB

CVE-2006-2492

CVE-2006-2492 PUBLISHED KEV CVSS 7.599999904632568 HIGH

Buffer overflow in Microsoft Word in Office 2000 SP3, Office XP SP3, Office 2003 Sp1 and SP2, and Microsoft Works Suites through 2006, allows user-assisted attackers to execute arbitrary code via a malformed object pointer, as originally reported by ISC on 20060519 for a zero-day attack.

EPSS 76.15% · 98.9th percentile

Risk Scores

CVSS 2.0
7.599999904632568
EPSS Score
76.15%
98.9th percentile

Affected Products

VendorProductVersions
n/an/an/a
microsoftoffice2000, 2003, 2003
microsoftworks_suite2000

Timeline

  • May 20, 2006 CVE Published
  • Sep 9, 2013 PoC Published
  • Dec 13, 2016 PoC Published
  • Jul 2, 2021 PoC Published
  • Feb 4, 2022 EPSS Score
  • May 20, 2022 EPSS Score
  • Jun 8, 2022 CISA KEV Added
  • Jul 12, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Feb 9, 2023 EPSS Score
  • Apr 3, 2023 EPSS Score
  • Apr 30, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›