CVE-2013-1328

3 documents3 sources
Severity
9.3CRITICAL
EPSS
58.6%
top 1.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Publisher
Timeline
PublishedMay 15
Latest updateMay 14

Description

Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers incorrect pointer handling, aka "Publisher Pointer Handling Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDmicrosoft/publisher2003, 2007, 2010+2

🔴Vulnerability Details

2
GHSA
GHSA-7vph-chc5-9x2h: Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers inco2022-05-14
CVEList
CVE-2013-1328: Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers inco2013-05-15
CVE-2013-1328 (CRITICAL CVSS 9.3) | Microsoft Publisher 2003 SP3 | cvebase.io