Published: 11/09/2013 Updated: 12/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word Web App 2010 SP1 in Office Web Apps 2010, Word 2003 SP3, Word 2007 SP3, Word 2010 SP1, Office Compatibility Pack SP3, and Word Viewer allow remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Word Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3847, CVE-2013-3849, and CVE-2013-3858.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft office web apps 2010
microsoft office compatibility pack
microsoft word 2010
microsoft word viewer
microsoft word 2007
microsoft word 2003
microsoft sharepoint server 2010

CWE-119 http://www.us-cert.gov/ncas/alerts/TA13-253A https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18800 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18281 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-072 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-067 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-3848

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect