CVE-2006-3653 - wksss.exe 8.4.702.0 in Microsoft Works Spreadsheet 8.0 allows remote attackers to cause a denial of

CVE-2006-3653

Summary

wksss.exe 8.4.702.0 in Microsoft Works Spreadsheet 8.0 allows remote attackers to cause a denial of service (CPU consumption or crash) via crafted (1) Works, (2) Excel, and (3) Lotus 1-2-3 files.

References

http://securitytracker.com/id?1016504
http://www.securityfocus.com/archive/1/440056/100/0/threaded
http://www.securityfocus.com/bid/18989
http://www.vupen.com/english/advisories/2006/2813

Vulnerable Configurations

cpe:2.3:a:microsoft:works:8.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:works:8.0:*:*:*:*:*:*:*

CVSS

Base:	2.6 (as of 18-10-2018 - 16:48)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	HIGH	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:H/Au:N/C:N/I:N/A:P

refmap via4

bid	18989
bugtraq	20060714 Microsoft Works - Buffer Overflows / Denial of Service (DoS)-Vulnerabilities
sectrack	1016504
vupen	ADV-2006-2813

Last major update

18-10-2018 - 16:48

Published

18-07-2006 - 15:47

Last modified

18-10-2018 - 16:48