CVE-2014-2730

The XML parser in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013, and Office for Mac 2011, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory consumption and persistent application hang) via a crafted XML document containing a large number of nested entity references, as demonstrated by a crafted text/plain e-mail message to Outlook, a similar issue to CVE-2003-1564.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://www.securityfocus.com/archive/1/531722/100/0/threaded
http://www.securityfocus.com/archive/1/531722/100/0/threaded

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:office:2007:sp3::::::
	cpe:2.3:a:microsoft:office:2010:sp1:x64:::::*
	cpe:2.3:a:microsoft:office:2010:sp1:x86:::::*
	cpe:2.3:a:microsoft:office:2010:sp2:x64:::::*
	cpe:2.3:a:microsoft:office:2010:sp2:x86:::::*
	cpe:2.3:a:microsoft:office:2011::mac:::::
	cpe:2.3:a:microsoft:office:2013:-:-::-:-:x64:
	cpe:2.3:a:microsoft:office:2013:-:-::-:-:x86:

History

21 Nov 2024, 02:06

Type	Values Removed	Values Added
References	~~() http://www.securityfocus.com/archive/1/531722/100/0/threaded -~~	() http://www.securityfocus.com/archive/1/531722/100/0/threaded -

Information

Published : 2014-04-05 14:55

Updated : 2024-11-21 02:06

NVD link : CVE-2014-2730

Mitre link : CVE-2014-2730

CVE.ORG link : CVE-2014-2730

JSON object : View

Products Affected

microsoft

office

CWE

CWE-399

Resource Management Errors

{"id": "CVE-2014-2730", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-04-05T14:55:04.993", "references": [{"url": "http://www.securityfocus.com/archive/1/531722/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/531722/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-399"}]}], "descriptions": [{"lang": "en", "value": "The XML parser in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013, and Office for Mac 2011, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory consumption and persistent application hang) via a crafted XML document containing a large number of nested entity references, as demonstrated by a crafted text/plain e-mail message to Outlook, a similar issue to CVE-2003-1564."}, {"lang": "es", "value": "El analizador XML en Microsoft Office 2007 SP3, 2010 SP1 y SP2 y 2013 y Office para Mac 2011, no detecta debidamente recursi\u00f3n durante expansi\u00f3n de entidad, lo que permite a atacantes remotos causar una denegaci\u00f3n de servicio (consumo de memoria y cuelgue de aplicaci\u00f3n persistente) a trav\u00e9s de un documento XML manipulado que contiene un n\u00famero grande de referencias de entidad anidadas, tal y como fue demostrado por un mensaje de email en texto plano manipulado hacia Outlook, un problema similar a CVE-2003-1564."}], "lastModified": "2024-11-21T02:06:50.877", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:office:2007:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FEECD12A-5BEF-4675-B62E-86CF4A7474D7"}, {"criteria": "cpe:2.3:a:microsoft:office:2010:sp1:x64:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8239CEF1-BD02-4ACE-A0C2-75A9EAA15914"}, {"criteria": "cpe:2.3:a:microsoft:office:2010:sp1:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8383FADC-9391-4570-AAF9-92A952A4F04F"}, {"criteria": "cpe:2.3:a:microsoft:office:2010:sp2:x64:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69998A67-CB15-4217-8AD6-43F9BA3C6454"}, {"criteria": "cpe:2.3:a:microsoft:office:2010:sp2:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "349E9084-8116-43E9-8B19-CA521C96660D"}, {"criteria": "cpe:2.3:a:microsoft:office:2011:*:mac:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D84FC39-29AA-4EF2-ACE7-E72635126F2B"}, {"criteria": "cpe:2.3:a:microsoft:office:2013:-:-:*:-:-:x64:*", "vulnerable": true, "matchCriteriaId": "4CF73437-3617-4143-932A-47565106C16C"}, {"criteria": "cpe:2.3:a:microsoft:office:2013:-:-:*:-:-:x86:*", "vulnerable": true, "matchCriteriaId": "6E3190C1-7A52-4F68-B5C0-E0A9EC051627"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}