9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.968 High
EPSS
Percentile
99.6%
Buffer overflow in Microsoft Office 2003 SP3 and Office 2011 for Mac allows remote attackers to execute arbitrary code via crafted PNG data in an Office document, leading to improper memory allocation, aka “Office Buffer Overflow Vulnerability.”
Recent assessments:
Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0
www.us-cert.gov/ncas/alerts/TA13-168A
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1331
docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-051
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16713
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16732