CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-3431

Buffer overflow in certain Asian language versions of Microsoft Excel might allow user-assisted attackers to execute arbitrary code via a crafted STYLE record in a spreadsheet that triggers the overflow when the user attempts to repair the document or selects the "Style" option, as demonstrated by nanika.xls. NOTE: Microsoft has confirmed to CVE via e-mail that this is different than the other Excel vulnerabilities announced before 20060707, including CVE-2006-3059 and CVE-2006-3086.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.73

EPSS Ranking 98.7%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2006-3431

Microsoft » Excel » Version: N/A

cpe:2.3:a:microsoft:excel:-
Microsoft » Excel » Version: 2.0

cpe:2.3:a:microsoft:excel:2.0
Microsoft » Excel » Version: 2000

cpe:2.3:a:microsoft:excel:2000
Microsoft » Excel » Version: 2001

cpe:2.3:a:microsoft:excel:2001
Microsoft » Excel » Version: 2002

cpe:2.3:a:microsoft:excel:2002
Microsoft » Excel » Version: 2003

cpe:2.3:a:microsoft:excel:2003
Microsoft » Excel » Version: 2004

cpe:2.3:a:microsoft:excel:2004
Microsoft » Excel » Version: 2007

cpe:2.3:a:microsoft:excel:2007
Microsoft » Excel » Version: 2010

cpe:2.3:a:microsoft:excel:2010
Microsoft » Excel » Version: 2013

cpe:2.3:a:microsoft:excel:2013
Microsoft » Excel » Version: 2016

cpe:2.3:a:microsoft:excel:2016
Microsoft » Excel » Version: 2019

cpe:2.3:a:microsoft:excel:2019
Microsoft » Excel » Version: 3.0

cpe:2.3:a:microsoft:excel:3.0
Microsoft » Excel » Version: 4.0

cpe:2.3:a:microsoft:excel:4.0
Microsoft » Excel » Version: 95

cpe:2.3:a:microsoft:excel:95
Microsoft » Excel » Version: 97

cpe:2.3:a:microsoft:excel:97

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-3431

Products

Pricing

Contact Us