CVE-2013-0007
published 2013-01-09CVE-2013-0007: Microsoft XML Core Services (aka MSXML) 4.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a…
critical9.3CVSS 3.1
AVNACMAuNCCICAC
Microsoft XML Core Services (aka MSXML) 4.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML XSLT Vulnerability."
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | expression_web | — | — |
| microsoft | groove_server | — | — |
| microsoft | office | — | — |
| microsoft | office | — | — |
| microsoft | sharepoint_server | — | — |
| microsoft | windows_server_2008 | — | — |
| microsoft | xml_core_services | — | — |
| microsoft | xml_core_services | — | — |
| microsoft | xml_core_services | — | — |
| microsoft | xml_core_services | — | — |