CVE-2013-3889
Published Oct 9, 2013
Last updated 6 years ago
Overview
- Description
- Microsoft Excel 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Mac 2011; Excel Viewer; Office Compatibility Pack SP3; and Excel Services and Word Automation Services in SharePoint Server 2013 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Excel Memory Corruption Vulnerability."
- Source
- secure@microsoft.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "5E01525C-A3AB-4AB7-82F9-B91E4D552FD7"
},
{
"criteria": "cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:x86:*:*",
"vulnerable": true,
"matchCriteriaId": "3C4CFF7E-7170-4A6B-9A59-9815EE896C62"
},
{
"criteria": "cpe:2.3:a:microsoft:excel:2013:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "08795370-2A25-4F0D-970D-9B087F980BBD"
},
{
"criteria": "cpe:2.3:a:microsoft:excel:2013:*:*:*:*:x86:*:*",
"vulnerable": true,
"matchCriteriaId": "78F27907-6FAB-4A9D-B100-B3D170520A74"
},
{
"criteria": "cpe:2.3:a:microsoft:excel_viewer:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "971EC323-267F-4DAF-BA3B-10A47A9F1ADA"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:office:2007:sp3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FEECD12A-5BEF-4675-B62E-86CF4A7474D7"
},
{
"criteria": "cpe:2.3:a:microsoft:office:2010:sp1:x64:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8239CEF1-BD02-4ACE-A0C2-75A9EAA15914"
},
{
"criteria": "cpe:2.3:a:microsoft:office:2010:sp1:x86:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8383FADC-9391-4570-AAF9-92A952A4F04F"
},
{
"criteria": "cpe:2.3:a:microsoft:office:2011:*:mac:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0D84FC39-29AA-4EF2-ACE7-E72635126F2B"
},
{
"criteria": "cpe:2.3:a:microsoft:office:2013:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E926E35D-02F6-4EA0-83C5-31443D3A0F01"
},
{
"criteria": "cpe:2.3:a:microsoft:office_2013_rt:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D33A5EFD-A587-44CE-B9F2-DBE8EC7C686F"
},
{
"criteria": "cpe:2.3:a:microsoft:office_compatibility_pack:*:sp3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "44BC7B7B-7191-431C-8CAE-83B3F0EFF03E"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:office_web_apps:2010:sp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "343EEB54-C1B1-4D7B-8780-5B5A5F2F840C"
},
{
"criteria": "cpe:2.3:a:microsoft:office_web_apps:2010:sp2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A8235774-4B57-4793-BE26-2CDE67532EDD"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:sharepoint_server:2007:sp3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B7AEA5E-C3D7-4E6D-96F0-5F9A175631C9"
},
{
"criteria": "cpe:2.3:a:microsoft:sharepoint_server:2013:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "993E5C5C-4C78-4CDA-BF67-5A35814EF621"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:sharepoint_server:2010:sp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6FA65D4A-00C8-47E2-AF9F-6B420017CD29"
},
{
"criteria": "cpe:2.3:a:microsoft:sharepoint_server:2010:sp2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A57C675-05A9-4BC2-AE95-7CA5CA6B1F73"
}
],
"operator": "OR"
}
]
}
]