CVE-2006-0010

Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows ME allows remote attackers to execute arbitrary code via an e-mail message or web page with a crafted Embedded Open Type (EOT) web font that triggers the overflow during decompression.

Published: Jan 10, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-0010
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
microsoft / windows_nt	3.5.1	3.5.1.x
microsoft / windows_nt	3.5.1-sp1	3.5.1-sp1.x
microsoft / windows_nt	4.0	4.0.x
microsoft / windows_nt	4.0-sp4	4.0-sp4.x
microsoft / windows_nt	4.0-sp5	4.0-sp5.x
microsoft / windows_xp	-	-
microsoft / windows_nt	4.0-sp3	4.0-sp3.x
microsoft / windows_2003_server	web	web.x
microsoft / windows_2003_server	enterprise	enterprise.x
microsoft / windows_nt	4.0-sp2	4.0-sp2.x
microsoft / windows_nt	4.0-sp6a	4.0-sp6a.x
microsoft / windows_2003_server	enterprise_64-bit	enterprise_64-bit.x
microsoft / windows_nt	3.5.1-sp5	3.5.1-sp5.x
microsoft / windows_2000	-	-
microsoft / windows_nt	4.0-sp6	4.0-sp6.x
microsoft / windows_2003_server	standard_64-bit	standard_64-bit.x
microsoft / windows_nt	4.0-sp1	4.0-sp1.x
microsoft / windows_2003_server	datacenter_64-bit-sp1	datacenter_64-bit-sp1.x
microsoft / windows_98se	-	-
microsoft / windows_2003_server	r2-sp1	r2-sp1.x
microsoft / windows_2003_server	enterprise_64-bit-sp1	enterprise_64-bit-sp1.x
microsoft / windows_2003_server	r2	r2.x
microsoft / windows_nt	3.5.1-sp3	3.5.1-sp3.x
microsoft / windows_2003_server	web-sp1	web-sp1.x
microsoft / windows_nt	3.5.1-sp2	3.5.1-sp2.x
microsoft / windows_2003_server	standard-sp1	standard-sp1.x
microsoft / windows_me	-	-
microsoft / windows_2003_server	enterprise-sp1	enterprise-sp1.x
microsoft / windows_2003_server	standard	standard.x
microsoft / windows_98	-	-
microsoft / windows_nt	3.5.1-sp4	3.5.1-sp4.x

Vulnerability Database

289,599

CVE-2006-0010