Lucene search

K

[email protected]NVD:CVE-2014-0260

HistoryJan 15, 2014 - 4:13 p.m.

CVE-2014-0260

2014-01-1516:13:03

CWE-119

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.443 Medium

EPSS

Percentile

97.4%

Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office Compatibility Pack SP3; Word Viewer; SharePoint Server 2010 SP1 and SP2 and 2013; Office Web Apps 2010 SP1 and SP2; and Office Web Apps Server 2013 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka “Word Memory Corruption Vulnerability.”

Affected configurations

NVD

Node

microsoftoffice_compatibility_packsp3

OR

microsoftoffice_web_appsMatch2010sp1

OR

microsoftoffice_web_appsMatch2010sp2

OR

microsoftoffice_web_apps_serverMatch2013

OR

microsoftsharepoint_serverMatch2010sp1

OR

microsoftsharepoint_serverMatch2010sp2

OR

microsoftsharepoint_serverMatch2013

OR

microsoftwordMatch2003sp3

OR

microsoftwordMatch2007sp3

OR

microsoftwordMatch2010sp1

OR

microsoftwordMatch2010sp2

OR

microsoftwordMatch2013

OR

microsoftword_viewer

References

www.securitytracker.com/id/1029598

www.securitytracker.com/id/1029599

docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-001

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.443 Medium

EPSS

Percentile

97.4%

Related for NVD:CVE-2014-0260

cve1 prion1 cvelist1 seebug1 symantec1 nessus1 mskb1 openvas4 securityvulns1 kaspersky1