Lucene search
HistoryApr 13, 2011 - 6:55 p.m.
CVE-2011-0028
cve-2011-0028
wordpad
windows xp
server 2003
remote code execution
doc file
vulnerability
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.956 High
EPSS
Percentile
99.4%
WordPad in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly parse fields in Word documents, which allows remote attackers to execute arbitrary code via a crafted .doc file, aka “WordPad Converter Parsing Vulnerability.”
Affected configurations
Node
microsoftwindows_server_2003sp2
ORmicrosoftwindows_xpsp3
ORmicrosoftwindows_xpMatch-sp2x64
Related
checkpoint_advisories
checkpoint_advisories
symantec
symantec
openvas
openvas
WordPad Text Converters Remote Code Execution Vulnerability (2485663)
2011-04-13 00:00:00
WordPad Text Converters Remote Code Execution Vulnerability (2485663)
2011-04-13 00:00:00
cvelist
cvelist
CVE-2011-0028
2011-04-13 18:00:00
nvd
nvd
CVE-2011-0028
2011-04-13 18:55:00
nessus
nessus
prion
prion
Spoofing
2011-04-13 18:55:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2011-04-17 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.956 High
EPSS
Percentile
99.4%
Related for CVE-2011-0028