Buffer overflow in Microsoft Office 2003 SP3 and Office 2011 for Mac allows remote attackers to execute arbitrary code via crafted PNG data in an Office document, leading to improper memory allocation, aka "Office Buffer Overflow Vulnerability."
References
Link | Resource |
---|---|
http://www.us-cert.gov/ncas/alerts/TA13-168A | Third Party Advisory US Government Resource |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-051 | Patch Vendor Advisory |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16713 | Broken Link |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16732 | Broken Link |
http://www.us-cert.gov/ncas/alerts/TA13-168A | Third Party Advisory US Government Resource |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-051 | Patch Vendor Advisory |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16713 | Broken Link |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16732 | Broken Link |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:49
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.us-cert.gov/ncas/alerts/TA13-168A - Third Party Advisory, US Government Resource | |
References | () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-051 - Patch, Vendor Advisory | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16713 - Broken Link | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16732 - Broken Link |
28 Jun 2024, 14:18
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.us-cert.gov/ncas/alerts/TA13-168A - Third Party Advisory, US Government Resource | |
References | () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-051 - Patch, Vendor Advisory | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16713 - Broken Link | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16732 - Broken Link | |
CPE | cpe:2.3:a:microsoft:office:2011:*:*:*:*:macos:*:* | |
CWE | CWE-120 | |
CVSS |
v2 : v3 : |
v2 : 9.3
v3 : 7.8 |
Information
Published : 2013-06-12 03:29
Updated : 2024-11-21 01:49
NVD link : CVE-2013-1331
Mitre link : CVE-2013-1331
CVE.ORG link : CVE-2013-1331
JSON object : View
Products Affected
microsoft
- office
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')