Lucene search

[email protected]CVE-2010-3217

HistoryOct 13, 2010 - 7:00 p.m.

CVE-2010-3217

2010-10-1319:00:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2010-3217

microsoft word

remote execution

vulnerability

lfo records

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.92 High

EPSS

Percentile

98.9%

JSON

Double free vulnerability in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via a Word document with crafted List Format Override (LFO) records, aka “Word Pointer Vulnerability.”

CPENameOperatorVersion
microsoft:wordmicrosoft wordeq2002

CPE	Name	Operator	Version
microsoft:word	microsoft word	eq	2002

References

secunia.com/secunia_research/2010-76/

www.securityfocus.com/archive/1/514298/100/0/threaded

www.securityfocus.com/archive/1/515440/100/0/threaded

www.us-cert.gov/cas/techalerts/TA10-285A.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-079

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6695

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.92 High

EPSS

Percentile

98.9%

JSON

Related for CVE-2010-3217

prion1 securityvulns4 symantec1 openvas2 nessus1 mskb1 seebug1