Lucene search
HistoryMay 15, 2013 - 3:36 a.m.
CVE-2013-1301
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.037
Percentile
91.9%
Microsoft Visio 2003 SP3 2007 SP3, and 2010 SP1 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, aka âXML External Entities Resolution Vulnerability.â
Affected configurations
Node
microsoftvisioMatch2003sp3
ORmicrosoftvisioMatch2007sp3
ORmicrosoftvisioMatch2010sp1
Related
openvas
openvas
Microsoft Visio Information Disclosure Vulnerability (2834692)
2013-03-13 00:00:00
Microsoft Visio Information Disclosure Vulnerability (2834692)
2013-03-13 00:00:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
Microsoft Visio information leakage
2013-05-27 00:00:00
nessus
nessus
symantec
symantec
Microsoft Visio CVE-2013-1301 Information Disclosure Vulnerability
2013-05-14 00:00:00
prion
prion
Xxe
2013-05-15 03:36:00
seebug
seebug
cvelist
cvelist
CVE-2013-1301
2013-05-15 01:00:00
cve
cve
CVE-2013-1301
2013-05-15 03:36:33
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.037
Percentile
91.9%
Related for NVD:CVE-2013-1301