Lucene search

K
cvelistMicrosoftCVELIST:CVE-2013-3906
HistoryNov 06, 2013 - 11:00 a.m.

CVE-2013-3906

2013-11-0611:00:00
microsoft
www.cve.org

7.4 High

AI Score

Confidence

Low

0.97 High

EPSS

Percentile

99.8%

GDI+ in Microsoft Windows Vista SP2 and Server 2008 SP2; Office 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Office Compatibility Pack SP3; and Lync 2010, 2010 Attendee, 2013, and Basic 2013 allows remote attackers to execute arbitrary code via a crafted TIFF image, as demonstrated by an image in a Word document, and exploited in the wild in October and November 2013.