| | CVE-2006-3647 |  Microsoft | critical | 9.3 | 10.1%
| | Integer overflow in Microsoft Word 2000, 2002, 2003, 2004 for Mac, and v.X for Mac allows remote use… | Oct 10, 2006 | Apr 23, 2026 |
| | CVE-2006-3434 | Microsoft | critical | 9.3 | 25.4%
| | Unspecified vulnerability in Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac allows r… | Oct 10, 2006 | Apr 23, 2026 |
| | CVE-2006-2387 | Microsoft | medium | 5.1 | 41.2%
| | Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, Excel View… | Oct 10, 2006 | Apr 23, 2026 |
| | CVE-2006-4154 |  Apache | medium | 6.8 | 32.8%
| | Format string vulnerability in the mod_tcl module 1.0 for Apache 2.x allows context-dependent attack… | Oct 16, 2006 | Apr 23, 2026 |
| | CVE-2006-5296 | Microsoft | medium | 4.3 | 67.8%
| | PowerPoint in Microsoft Office 2003 does not properly handle a container object whose position value… | Oct 16, 2006 | Apr 23, 2026 |
| | CVE-2006-5300 |  HPE | medium | 6.5 | 1.0%
| | Unspecified vulnerability in HP Version Control Agent before 2.1.5 allows remote authenticated users… | Oct 17, 2006 | Apr 23, 2026 |
| | CVE-2006-5394 |  Cisco | low | 2.1 | 0.1%
| | The default configuration of Cisco Secure Desktop (CSD) has an unchecked "Disable printing" box in S… | Oct 18, 2006 | Apr 23, 2026 |
| | CVE-2006-5393 | Cisco | medium | 5.5 | 0.1%
| | Cisco Secure Desktop (CSD) does not require that the ClearPageFileAtShutdown (aka CCE-Winv2.0-407) r… | Oct 18, 2006 | Apr 23, 2026 |
| | CVE-2006-5395 | Microsoft | high | 7.5 | 28.8%
| | Buffer overflow in Microsoft Class Package Export Tool (aka clspack.exe) allows context-dependent at… | Oct 18, 2006 | Apr 23, 2026 |
| | CVE-2006-5417 |  Trellix | medium | 5.0 | 1.3%
| | McAfee Network Agent (mcnasvc.exe) 1.0.178.0, as used by multiple McAfee products possibly including… | Oct 20, 2006 | Apr 23, 2026 |
| | CVE-2006-5448 | Microsoft | high | 7.5 | 38.4%
| | The drmstor.dll ActiveX object in Microsoft Windows Digital Rights Management System (DRM) allows re… | Oct 23, 2006 | Apr 23, 2026 |
| | CVE-2006-5553 | Cisco | high | 7.8 | 1.2%
| | Cisco Security Agent (CSA) for Linux 4.5 before 4.5.1.657 and 5.0 before 5.0.0.193, as used by Unifi… | Oct 26, 2006 | Apr 23, 2026 |
| | CVE-2006-5544 | Microsoft | medium | 6.4 | 54.4%
| | Visual truncation vulnerability in Microsoft Internet Explorer 7 allows remote attackers to spoof th… | Oct 26, 2006 | Apr 23, 2026 |
| | CVE-2006-5559 | Microsoft | critical | 9.3 | 72.6%
| | The Execute method in the ADODB.Connection 2.7 and 2.8 ActiveX control objects (ADODB.Connection.2.7… | Oct 27, 2006 | Apr 23, 2026 |
| | CVE-2006-5614 | Microsoft | low | 2.6 | 88.4%
| | Microsoft Windows NAT Helper Components (ipnathlp.dll) on Windows XP SP2, when Internet Connection S… | Oct 31, 2006 | Apr 23, 2026 |
| | CVE-2006-4704 | Microsoft | medium | 6.8 | 72.1%
| | Cross-zone scripting vulnerability in the WMI Object Broker (WMIScriptUtils.WMIObjectBroker2) Active… | Nov 1, 2006 | Apr 23, 2026 |
| | CVE-2006-5660 | Cisco | high | 7.5 | 1.7%
| | Cisco Security Agent Management Center (CSAMC) 5.1 before 5.1.0.79 does not properly handle certain … | Nov 3, 2006 | Apr 23, 2026 |
| | CVE-2006-5745 | Microsoft | high | 7.6 | 87.4%
| | Unspecified vulnerability in the setRequestHeader method in the XMLHTTP (XML HTTP) ActiveX Control 4… | Nov 6, 2006 | Apr 23, 2026 |
| | CVE-2006-5808 | Cisco | medium | 4.6 | 0.1%
| | The installation of Cisco Secure Desktop (CSD) before 3.1.1.45 uses insecure default permissions (al… | Nov 8, 2006 | Apr 23, 2026 |
| | CVE-2006-5807 | Cisco | medium | 4.6 | 0.1%
| | Cisco Secure Desktop (CSD) before 3.1.1.45 allows local users to escape out of the secure desktop en… | Nov 8, 2006 | Apr 23, 2026 |
| | CVE-2006-5806 | Cisco | low | 2.1 | 0.1%
| | SSL VPN Client in Cisco Secure Desktop before 3.1.1.45, when configured to spawn a web browser after… | Nov 8, 2006 | Apr 23, 2026 |
| | CVE-2006-5805 | Microsoft | medium | 5.0 | 2.1%
| | Microsoft Internet Explorer 7 allows remote attackers to cause a security certificate from a secure … | Nov 8, 2006 | Apr 23, 2026 |
| | CVE-2006-5782 | HPE | high | 7.8 | 4.7%
| | radexecd.exe in HP OpenView Client Configuraton Manager (CCM) does not require authentication before… | Nov 9, 2006 | Apr 23, 2026 |
| | CVE-2006-5884 | Microsoft | high | 7.5 | 14.6%
| | Multiple unspecified vulnerabilities in DirectAnimation ActiveX controls for Microsoft Internet Expl… | Nov 14, 2006 | Apr 23, 2026 |
| | CVE-2006-4687 | Microsoft | medium | 5.1 | 61.9%
| | Microsoft Internet Explorer 5.01 through 6 allows remote attackers to execute arbitrary code via cra… | Nov 14, 2006 | Apr 23, 2026 |
| | CVE-2006-5913 | Microsoft | medium | 6.4 | 2.6%
| | Microsoft Internet Explorer 7 allows remote attackers to (1) cause a security certificate from a sec… | Nov 15, 2006 | Apr 23, 2026 |
| | CVE-2006-5990 |  VMware | medium | 4.0 | 0.4%
| | VMWare VirtualCenter client 2.x before 2.0.1 Patch 1 (Build 33643) and 1.4.x before 1.4.1 Patch 1 (B… | Nov 21, 2006 | Apr 23, 2026 |
| | CVE-2006-6134 | Microsoft | high | 7.5 | 73.7%
| | Heap-based buffer overflow in the WMCheckURLScheme function in WMVCORE.DLL in Microsoft Windows Medi… | Nov 28, 2006 | Apr 23, 2026 |
| | CVE-2006-6133 | Microsoft | high | 7.6 | 71.9%
| | Stack-based buffer overflow in Visual Studio Crystal Reports for Microsoft Visual Studio .NET 2002 a… | Nov 28, 2006 | Apr 23, 2026 |
| | CVE-2006-6266 | Microsoft | medium | 6.8 | 17.9%
| | Teredo clients, when following item 6 of RFC4380 section 5.2.3, start direct IPv6 connectivity tests… | Dec 4, 2006 | Apr 23, 2026 |
| | CVE-2006-6265 | Microsoft | medium | 5.8 | 3.1%
| | Teredo clients, when located behind a restricted NAT, allow remote attackers to establish an inbound… | Dec 4, 2006 | Apr 23, 2026 |
| | CVE-2006-6264 | Microsoft | high | 7.5 | 13.4%
| | Teredo creates trusted peer entries for arbitrary incoming source Teredo addresses, even if the low … | Dec 4, 2006 | Apr 23, 2026 |
| | CVE-2006-6263 | Microsoft | medium | 6.8 | 10.1%
| | Teredo clients, when source routing is enabled, recognize a Routing header in an encapsulated IPv6 p… | Dec 4, 2006 | Apr 23, 2026 |
| | CVE-2006-6252 | Microsoft | medium | 4.3 | 13.3%
| | Microsoft Windows Live Messenger 8.0 and earlier, when gestual emoticons are enabled, allows remote … | Dec 4, 2006 | Apr 23, 2026 |
| | CVE-2006-6311 | Microsoft | medium | 5.0 | 44.9%
| | Microsoft Internet Explorer 6.0.2900.2180 allows remote attackers to cause a denial of service via a… | Dec 6, 2006 | Apr 23, 2026 |
| | CVE-2006-6310 | Microsoft | medium | 5.0 | 13.3%
| | Microsoft Internet Explorer 6.0 SP1 and earlier allows remote attackers to cause a denial of service… | Dec 6, 2006 | Apr 23, 2026 |
| | CVE-2006-5994 | Microsoft | critical | 9.3 | 59.6%
| | Unspecified vulnerability in Microsoft Word 2000 and 2002, Office Word and Word Viewer 2003, Word 20… | Dec 6, 2006 | Apr 23, 2026 |
| | CVE-2006-6410 | VMware | medium | 4.6 | 0.2%
| | Buffer overflow in an ActiveX control in VMWare 5.5.1 allows local users to execute arbitrary code v… | Dec 10, 2006 | Apr 23, 2026 |
| | CVE-2006-6456 | Microsoft | critical | 9.3 | 59.6%
| | Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote … | Dec 11, 2006 | Apr 23, 2026 |
| | CVE-2006-5581 | Microsoft | critical | 9.3 | 66.2%
| | Unspecified vulnerability in Microsoft Internet Explorer 6 allows remote attackers to execute arbitr… | Dec 12, 2006 | Apr 23, 2026 |
| | CVE-2006-5579 | Microsoft | critical | 9.3 | 58.9%
| | Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code by using JavaScript … | Dec 12, 2006 | Apr 23, 2026 |
| | CVE-2006-5578 | Microsoft | low | 2.6 | 47.9%
| | Microsoft Internet Explorer 6 and earlier allows remote attackers to read Temporary Internet Files (… | Dec 12, 2006 | Apr 23, 2026 |
| | CVE-2006-5577 | Microsoft | medium | 4.3 | 52.2%
| | Microsoft Internet Explorer 6 and earlier allows remote attackers to obtain sensitive information vi… | Dec 12, 2006 | Apr 23, 2026 |
| | CVE-2006-4702 | Microsoft | medium | 6.8 | 55.7%
| | Buffer overflow in the Windows Media Format Runtime in Microsoft Windows Media Player (WMP) 6.4 and … | Dec 13, 2006 | Apr 23, 2026 |
| | CVE-2006-2386 | Microsoft | medium | 6.8 | 57.0%
| | Unspecified vulnerability in Microsoft Outlook Express 6 and earlier allows remote attackers to exec… | Dec 13, 2006 | Apr 23, 2026 |
| | CVE-2006-6561 | Microsoft | critical | 9.3 | 71.4%
| | Unspecified vulnerability in Microsoft Word 2000, 2002, and Word Viewer 2003 allows user-assisted re… | Dec 14, 2006 | Apr 23, 2026 |
| | CVE-2006-6474 | Trellix | medium | 4.6 | 0.1%
| | Untrusted search path vulnerability in McAfee VirusScan for Linux 4510e and earlier includes the cur… | Dec 14, 2006 | Apr 23, 2026 |
| | CVE-2006-6589 | Apache | medium | 6.8 | 7.4%
| | Cross-site scripting (XSS) vulnerability in ecommerce/control/keywordsearch in the Apache Open For B… | Dec 15, 2006 | Apr 23, 2026 |
| | CVE-2006-6588 | Apache | high | 7.5 | 3.2%
| | The forum implementation in the ecommerce component in the Apache Open For Business Project (OFBiz) … | Dec 15, 2006 | Apr 23, 2026 |
| | CVE-2006-6587 | Apache | medium | 6.8 | 7.8%
| | Cross-site scripting (XSS) vulnerability in the forum implementation in the ecommerce component in t… | Dec 15, 2006 | Apr 23, 2026 |