Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-3889
HistoryOct 09, 2013 - 2:53 p.m.

CVE-2013-3889

2013-10-0914:53:25
CWE-119
[email protected]
web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.866 High

EPSS

Percentile

98.6%

JSON

Microsoft Excel 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Mac 2011; Excel Viewer; Office Compatibility Pack SP3; and Excel Services and Word Automation Services in SharePoint Server 2013 allow remote attackers to execute arbitrary code via a crafted Office document, aka “Microsoft Excel Memory Corruption Vulnerability.”

Affected configurations

NVD
Node
microsoftexcelMatch2010sp2x64
OR
microsoftexcelMatch2010sp2x86
OR
microsoftexcelMatch2013x64
OR
microsoftexcelMatch2013x86
OR
microsoftexcel_viewer
Node
microsoftofficeMatch2007sp3
OR
microsoftofficeMatch2010sp1x64
OR
microsoftofficeMatch2010sp1x86
OR
microsoftofficeMatch2011mac
OR
microsoftofficeMatch2013
OR
microsoftoffice_2013_rtMatch-
OR
microsoftoffice_compatibility_packsp3
Node
microsoftoffice_web_appsMatch2010sp1
OR
microsoftoffice_web_appsMatch2010sp2
Node
microsoftsharepoint_serverMatch2007sp3
OR
microsoftsharepoint_serverMatch2013
Node
microsoftsharepoint_serverMatch2010sp1
OR
microsoftsharepoint_serverMatch2010sp2

Related

cvelist 1
symantec 1
cve 1
prion 1
nessus 3
openvas 13
mskb 2
securityvulns 2
cvelist
cvelist
CVE-2013-3889
2013-10-09 14:44:00
symantec
symantec
Microsoft Excel CVE-2013-3889 Memory Corruption Vulnerability
2013-10-08 00:00:00
cve
cve
CVE-2013-3889
2013-10-09 14:53:25
prion
prion
Memory corruption
2013-10-09 14:53:00
nessus
nessus
MS13-084: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2885089)
2013-10-09 00:00:00
MS13-085: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2885080) (Mac OS X)
2013-10-09 00:00:00
MS13-085: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2885080)
2013-10-09 00:00:00
openvas
openvas
Microsoft Office Remote Code Execution Vulnerabilities-2885080 (Mac OS X)
2013-10-09 00:00:00
Microsoft SharePoint Foundation Remote Code Execution vulnerability (2885089)
2013-10-09 00:00:00
Microsoft Office Services Remote Code Execution vulnerability (2885089)
2013-10-09 00:00:00
mskb
mskb
MS13-085: Vulnerabilities in Microsoft Excel could allow remote code execution: October 8, 2013
2013-10-08 00:00:00
MS13-084: Vulnerabilities in Microsoft SharePoint Server could allow remote code execution: October 8, 2013
2013-10-08 00:00:00
securityvulns
securityvulns
Microsoft Sharepoint security vulnerabilities
2013-10-09 00:00:00
Microsoft Office multiple security vulnerabilities
2013-10-09 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.866 High

EPSS

Percentile

98.6%

JSON
Related for NVD:CVE-2013-3889
cvelist1symantec1cve1prion1nessus3openvas13mskb2securityvulns2