Lucene search

[email protected]CVE-2013-3158

HistorySep 11, 2013 - 2:03 p.m.

CVE-2013-3158

2013-09-1114:03:00

CWE-119

[email protected]

web.nvd.nist.gov

105

cve-2013-3158

microsoft excel

remote code execution

memory corruption

nvd

vulnerability

7.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.642 Medium

EPSS

Percentile

97.8%

JSON

Microsoft Excel 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka “Microsoft Office Memory Corruption Vulnerability.”

CPENameOperatorVersion
microsoft:excelmicrosoft exceleq2003
microsoft:excelmicrosoft exceleq2007

CPE	Name	Operator	Version
microsoft:excel	microsoft excel	eq	2003
microsoft:excel	microsoft excel	eq	2007

References

www.us-cert.gov/ncas/alerts/TA13-253A

docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-073

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18984

7.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.642 Medium

EPSS

Percentile

97.8%

JSON

Related for CVE-2013-3158

prion1 checkpoint_advisories1 symantec1 nessus2 openvas8 mskb1 securityvulns1