CVE-2014-1759

3 documents3 sources
Severity
9.3CRITICAL
EPSS
21.5%
top 4.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Publisher
Timeline
PublishedApr 8
Latest updateMay 14

Description

pubconv.dll in Microsoft Publisher 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code or cause a denial of service (incorrect pointer dereference and application crash) via a crafted .pub file, aka "Arbitrary Pointer Dereference Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDmicrosoft/publisher2003, 2007+1

🔴Vulnerability Details

2
GHSA
GHSA-74m3-8jcv-5xvr: pubconv2022-05-14
CVEList
CVE-2014-1759: pubconv2014-04-08
CVE-2014-1759 (CRITICAL CVSS 9.3) | pubconv.dll in Microsoft Publisher | cvebase.io