What is the severity of CVE-2006-3877?

CVE-2006-3877 is considered to have a high severity as it may allow attackers to execute arbitrary code on affected systems.

How do I fix CVE-2006-3877?

To remediate CVE-2006-3877, users should apply the latest patches and updates provided by Microsoft for the affected Office products.

Which Microsoft products are affected by CVE-2006-3877?

CVE-2006-3877 affects Microsoft Office 2000, 2002, 2003, and specific versions for Mac including Office 2004.

What kind of attacks does CVE-2006-3877 enable?

CVE-2006-3877 enables user-assisted attacks potentially resulting in the execution of malicious code when opening crafted files.

Is CVE-2006-3877 related to other vulnerabilities?

Yes, CVE-2006-3877 is a different vulnerability compared to CVE-2006-3435 and CVE-2006-4694, which also affect Microsoft Office products.

Vulnerability/
CVE-2006-3877

critical

9.3

CWE

10/10/2006

7/8/2024

CVE-2006-3877: Code Injection

First published: Tue Oct 10 2006(Updated: )

Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via an unspecified "crafted file," a different vulnerability than CVE-2006-3435, CVE-2006-4694, and CVE-2006-3876.

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Office FrontPage	=2003
Microsoft Project Professional	=2002-sp1
Microsoft Access	=2000
Microsoft Outlook	=2000
Microsoft PowerPoint	=2000
Microsoft Project Professional	=2003
Microsoft Office	=2004
Microsoft Excel for Mac	=2000
Microsoft Publisher	=2000
Microsoft Word for Android	=2000
Microsoft Access	=2002
Microsoft PowerPoint	=2002
Microsoft Office	=xp-sp3
Microsoft Outlook	=2003
Microsoft PowerPoint	=2003
Microsoft Office	=2003-sp2
Microsoft InfoPath	=2003
Microsoft Publisher	=2002
Microsoft Office FrontPage	=2002
Microsoft Excel Viewer	=2003
Microsoft Word for Android	=2003
Microsoft Excel for Mac	=2002
Microsoft Visio Professional	=2002-sp2
Microsoft Access	=2003
Microsoft Project Professional	=2000-sr1
Microsoft Publisher	=2003
Microsoft OneNote for Mac	=2003
Microsoft Word for Android	=2002
Microsoft Word Viewer	=2003
Microsoft Office FrontPage	=2000
Microsoft Visio Professional	=2003
Microsoft Excel for Mac	=2003
Microsoft Outlook	=2002
Microsoft PowerPoint	=2004
Microsoft Office	=2000-sp3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-3877?
CVE-2006-3877 is considered to have a high severity as it may allow attackers to execute arbitrary code on affected systems.
How do I fix CVE-2006-3877?
To remediate CVE-2006-3877, users should apply the latest patches and updates provided by Microsoft for the affected Office products.
Which Microsoft products are affected by CVE-2006-3877?
CVE-2006-3877 affects Microsoft Office 2000, 2002, 2003, and specific versions for Mac including Office 2004.
What kind of attacks does CVE-2006-3877 enable?
CVE-2006-3877 enables user-assisted attacks potentially resulting in the execution of malicious code when opening crafted files.
Is CVE-2006-3877 related to other vulnerabilities?
Yes, CVE-2006-3877 is a different vulnerability compared to CVE-2006-3435 and CVE-2006-4694, which also affect Microsoft Office products.

agent/type
agent/weakness
agent/author
agent/severity
agent/references
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/microsoft
canonical/microsoft office frontpage
version/microsoft office frontpage/2003
canonical/microsoft project professional
version/microsoft project professional/2002-sp1
canonical/microsoft access
version/microsoft access/2000
canonical/microsoft outlook
version/microsoft outlook/2000
canonical/microsoft powerpoint
version/microsoft powerpoint/2000
version/microsoft project professional/2003
canonical/microsoft office
version/microsoft office/2004
canonical/microsoft excel for mac
version/microsoft excel for mac/2000
canonical/microsoft publisher
version/microsoft publisher/2000
canonical/microsoft word for android
version/microsoft word for android/2000
version/microsoft access/2002
version/microsoft powerpoint/2002
version/microsoft office/xp-sp3
version/microsoft outlook/2003
version/microsoft powerpoint/2003
version/microsoft office/2003-sp2
canonical/microsoft infopath
version/microsoft infopath/2003
version/microsoft publisher/2002
version/microsoft office frontpage/2002
canonical/microsoft excel viewer
version/microsoft excel viewer/2003
version/microsoft word for android/2003
version/microsoft excel for mac/2002
canonical/microsoft visio professional
version/microsoft visio professional/2002-sp2
version/microsoft access/2003
version/microsoft project professional/2000-sr1
version/microsoft publisher/2003
canonical/microsoft onenote for mac
version/microsoft onenote for mac/2003
version/microsoft word for android/2002
canonical/microsoft word viewer
version/microsoft word viewer/2003
version/microsoft office frontpage/2000
version/microsoft visio professional/2003
version/microsoft excel for mac/2003
version/microsoft outlook/2002
version/microsoft powerpoint/2004
version/microsoft office/2000-sp3

CVE-2006-3877: Code Injection

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-3877?

How do I fix CVE-2006-3877?

Which Microsoft products are affected by CVE-2006-3877?

What kind of attacks does CVE-2006-3877 enable?

Is CVE-2006-3877 related to other vulnerabilities?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2006-3877?

How do I fix CVE-2006-3877?

Which Microsoft products are affected by CVE-2006-3877?

What kind of attacks does CVE-2006-3877 enable?

Is CVE-2006-3877 related to other vulnerabilities?