Publisher Security Vulnerabilities and Issues — Publisher CVE List

Lucene search

MicrosoftPublisher

11 matches found

CVE•added 2013/05/15 3:36 a.m.•53 views

CVE-2013-1329

Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers a buffer underflow, aka "Publisher Buffer Underflow Vulnerability."

9.3CVSS7.7AI score0.59037EPSS

CVE•added 2013/05/15 3:36 a.m.•48 views

CVE-2013-1316

Microsoft Publisher 2003 SP3 does not properly validate the size of an unspecified array, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Negative Value Allocation Vulnerability."

9.3CVSS7.6AI score0.59037EPSS

CVE•added 2013/05/15 3:36 a.m.•47 views

CVE-2013-1322

Microsoft Publisher 2003 SP3 does not properly check table range data, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Invalid Range Check Vulnerability."

10CVSS7.6AI score0.59349EPSS

CVE•added 2013/05/15 3:36 a.m.•42 views

CVE-2013-1327

Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers an improper memory allocation, aka "Publisher Signed Integer Vulnerability."

9.3CVSS7.5AI score0.59037EPSS

CVE•added 2013/05/15 3:36 a.m.•40 views

CVE-2013-1321

Microsoft Publisher 2003 SP3 does not properly check the data type of an unspecified return value, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Return Value Validation Vulnerability."

9.3CVSS7.6AI score0.53744EPSS

CVE•added 2013/05/15 3:36 a.m.•39 views

CVE-2013-1317

Integer overflow in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers an improper allocation-size calculation, aka "Publisher Integer Overflow Vulnerability."

9.3CVSS7.8AI score0.65127EPSS

CVE•added 2013/05/15 3:36 a.m.•37 views

CVE-2013-1319

Microsoft Publisher 2003 SP3 does not properly check the return value of an unspecified method, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Return Value Handling Vulnerability."

10CVSS7.6AI score0.61369EPSS

CVE•added 2013/05/15 3:36 a.m.•36 views

CVE-2013-1323

Microsoft Publisher 2003 SP3 does not properly handle NULL values for unspecified data items, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Incorrect NULL Value Handling Vulnerability."

9.3CVSS7.7AI score0.54064EPSS

CVE•added 2013/05/15 3:36 a.m.•35 views

CVE-2013-1320

Buffer overflow in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Buffer Overflow Vulnerability."

10CVSS7.8AI score0.59575EPSS

CVE•added 2013/05/15 3:36 a.m.•35 views

CVE-2013-1328

Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers incorrect pointer handling, aka "Publisher Pointer Handling Vulnerability."

9.3CVSS7.6AI score0.59037EPSS

CVE•added 2013/05/15 3:36 a.m.•33 views

CVE-2013-1318

Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers access to an invalid pointer, aka "Publisher Corrupt Interface Pointer Vulnerability."

10CVSS7.6AI score0.61369EPSS