CVE-2011-3413

2011-12-1400:55:00

CWE-94

[email protected]

web.nvd.nist.gov

cve-2011-3413

microsoft powerpoint

office 2008 for mac

office compatibility pack

powerpoint viewer

rce vulnerability

memory corruption

nvd

7.7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.926 High

EPSS

Percentile

99.0%

JSON

Microsoft PowerPoint 2007 SP2; Office 2008 for Mac; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; and PowerPoint Viewer 2007 SP2 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an invalid OfficeArt record in a PowerPoint document, aka “OfficeArt Shape RCE Vulnerability.”

CPENameOperatorVersion
microsoft:officemicrosoft officeeq2008
microsoft:office_compatibility_packmicrosoft office compatibility packeq2007
microsoft:powerpointmicrosoft powerpointeq2007
microsoft:powerpoint_viewermicrosoft powerpoint viewereq2007

CPE	Name	Operator	Version
microsoft:office	microsoft office	eq	2008
microsoft:office_compatibility_pack	microsoft office compatibility pack	eq	2007
microsoft:powerpoint	microsoft powerpoint	eq	2007
microsoft:powerpoint_viewer	microsoft powerpoint viewer	eq	2007