CVE-2006-2492
Summary
| CVE | CVE-2006-2492 |
|---|---|
| State | PUBLISHED |
| Assigner | certcc |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2006-05-20 00:02:00 UTC |
| Updated | 2026-04-16 14:02:14 UTC |
| Description | Buffer overflow in Microsoft Word in Office 2000 SP3, Office XP SP3, Office 2003 Sp1 and SP2, and Microsoft Works Suites through 2006, allows user-assisted attackers to execute arbitrary code via a malformed object pointer, as originally reported by ISC on 20060519 for a zero-day attack. |
Risk And Classification
Primary CVSS: v3.1 8.8 HIGH from [email protected]
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS: 0.483870000 probability, percentile 0.987110000 (date 2026-06-23)
CISA KEV: Listed on 2022-06-08; due 2022-06-22; ransomware use Unknown
Problem Types: CWE-120 | n/a | CWE-120 CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 3.1 | [email protected] | Primary | 8.8 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
| 3.1 | ADP | DECLARED | 8.8 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
| 3.1 | 134c704f-9b21-4f2e-91b3-4a467353bcc0 | Secondary | 8.8 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
| 2.0 | [email protected] | Primary | 7.6 | AV:N/AC:H/Au:N/C:C/I:C/A:C |
CVSS v3.1 Breakdown
Attack Vector
NetworkAttack Complexity
LowPrivileges Required
NoneUser Interaction
RequiredScope
UnchangedConfidentiality
HighIntegrity
HighAvailability
HighCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
HighAuthentication
NoneConfidentiality
CompleteIntegrity
CompleteAvailability
CompleteAV:N/AC:H/Au:N/C:C/I:C/A:C
CISA Known Exploited Vulnerability
| Vendor | Microsoft |
|---|---|
| Product | Word |
| Name | Microsoft Word Malformed Object Pointer Vulnerability |
| Required Action | Apply updates per vendor instructions. |
| Notes | https://nvd.nist.gov/vuln/detail/CVE-2006-2492 |
NVD Known Affected Configurations (CPE 2.3)
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Microsoft Word Malformed Object Pointer Remote Code Execution Vulnerability | af854a3a-2127-422b-91ae-364da2661108 | www.securityfocus.com | Broken Link, Patch, Third Party Advisory, VDB Entry |
| Microsoft Security Advisory (919637): Vulnerability in Word Could Allow Remote Code Execution | af854a3a-2127-422b-91ae-364da2661108 | www.microsoft.com | Broken Link, Patch, Vendor Advisory |
| www.osvdb.org/25635 | af854a3a-2127-422b-91ae-364da2661108 | www.osvdb.org | Broken Link |
| Microsoft Word Malformed Object Pointer Vulnerability - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Broken Link, Patch, Vendor Advisory |
| Repository / Oval Repository | af854a3a-2127-422b-91ae-364da2661108 | oval.cisecurity.org | Broken Link |
| Repository / Oval Repository | af854a3a-2127-422b-91ae-364da2661108 | oval.cisecurity.org | Broken Link |
| SANS Internet Storm Center; Cooperative Network Security Community - Internet Security - isc | af854a3a-2127-422b-91ae-364da2661108 | isc.sans.org | Exploit |
| SecurityTracker.com Archives - Microsoft Word Lets Remote Users Cause Arbitrary Code to Be Executed | af854a3a-2127-422b-91ae-364da2661108 | securitytracker.com | Broken Link, Third Party Advisory, VDB Entry |
| US-CERT Vulnerability Note VU#446012 | af854a3a-2127-422b-91ae-364da2661108 | www.kb.cert.org | Third Party Advisory, US Government Resource |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | af854a3a-2127-422b-91ae-364da2661108 | www.vupen.com | Broken Link |
| SANS Internet Storm Center; Cooperative Network Security Community - Internet Security - isc | af854a3a-2127-422b-91ae-364da2661108 | isc.sans.org | Exploit |
| Welcome to the Microsoft Security Response Center Blog! : Reports of a new vulnerability in Microsoft Word | af854a3a-2127-422b-91ae-364da2661108 | blogs.technet.com | Broken Link |
| US-CERT Technical Cyber Security Alert TA06-139A -- Microsoft Word Vulnerability | af854a3a-2127-422b-91ae-364da2661108 | www.us-cert.gov | Broken Link, Third Party Advisory, US Government Resource |
| Microsoft Security Bulletin MS06-027 - Critical | Microsoft Docs | af854a3a-2127-422b-91ae-364da2661108 | docs.microsoft.com | Patch, Vendor Advisory |
| www.cisa.gov/known-exploited-vulnerabilities-catalog | 134c704f-9b21-4f2e-91b3-4a467353bcc0 | www.cisa.gov | US Government Resource |
| IBM X-Force Exchange | af854a3a-2127-422b-91ae-364da2661108 | exchange.xforce.ibmcloud.com | Third Party Advisory, VDB Entry |
| US-CERT Technical Cyber Security Alert TA06-164A -- Microsoft Windows, Internet Explorer, Media Player, Word, PowerPoint, and Exchange Vulnerabilities | af854a3a-2127-422b-91ae-364da2661108 | www.us-cert.gov | Broken Link, Third Party Advisory, US Government Resource |
| Repository / Oval Repository | af854a3a-2127-422b-91ae-364da2661108 | oval.cisecurity.org | Broken Link |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
| CISA Known Exploited Vulnerabilities catalog | CISA | www.cisa.gov | kev |
No vendor comments have been submitted for this CVE.
Additional Advisory Data
| Source | Time | Event |
|---|---|---|
| ADP | 2022-06-08T00:00:00.000Z | CVE-2006-2492 added to CISA KEV |
There are currently no legacy QID mappings associated with this CVE.