CVE-2006-3014
CVE-2006-3014
Microsoft Excel allows user-assisted attackers to execute arbitrary javascript and redirect users to arbitrary sites via an Excel spreadsheet with an embedded Shockwave Flash Player ActiveX Object, which is automatically executed when the user opens the spreadsheet.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/28087unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://archives.neohapsis.com/archives/fulldisclosure/2006-06/0414.htmlhttp://hackingspirits.com/vuln-rnd/vuln-rnd.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-069http://secunia.com/advisories/21865http://secunia.com/advisories/22882http://securitytracker.com/id?1016344https://exchange.xforce.ibmcloud.com/vulnerabilities/27312https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A538http://www.adobe.com/support/security/bulletins/apsb06-11.htmlhttp://www.securiteam.com/windowsntfocus/5TP0M0KIUA.htmlhttp://www.securityfocus.com/bid/18583http://www.securityfocus.com/bid/19980