CVE-2013-6801 — Microsoft Word vulnerability

CWE-3993 documents3 sources

Severity

7.1HIGHNVD

EPSS

21.1%

top 4.34%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Word

Timeline

PublishedNov 18

Latest updateMay 17

Description

Microsoft Word 2003 SP2 and SP3 on Windows XP SP3 allows remote attackers to cause a denial of service (CPU consumption) via a malformed .doc file containing an embedded image, as demonstrated by word2003forkbomb.doc, related to a "fork bomb" issue.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

▶NVDmicrosoft/word2003

🔴Vulnerability Details

GHSA

GHSA-g85f-p8cx-jgq6: Microsoft Word 2003 SP2 and SP3 on Windows XP SP3 allows remote attackers to cause a denial of service (CPU consumption) via a malformed↗2022-05-17

▶

CVEList

CVE-2013-6801: Microsoft Word 2003 SP2 and SP3 on Windows XP SP3 allows remote attackers to cause a denial of service (CPU consumption) via a malformed↗2013-11-16

▶