Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2013 Greenbone AGOPENVAS:1361412562310903404
HistorySep 11, 2013 - 12:00 a.m.

Microsoft Office Compatibility Pack Remote Code Execution Vulnerabilities (2845537)

2013-09-1100:00:00
Copyright (C) 2013 Greenbone AG
plugins.openvas.org
13

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.872 High

EPSS

Percentile

98.6%

JSON

This host is missing an important security update according to
Microsoft Bulletin MS13-072.

# SPDX-FileCopyrightText: 2013 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.903404");
  script_version("2024-06-21T05:05:42+0000");
  script_cve_id("CVE-2013-3160", "CVE-2013-3847", "CVE-2013-3848", "CVE-2013-3849",
                "CVE-2013-3850", "CVE-2013-3851", "CVE-2013-3852", "CVE-2013-3853",
                "CVE-2013-3854", "CVE-2013-3855", "CVE-2013-3856", "CVE-2013-3857",
                "CVE-2013-3858");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2024-06-21 05:05:42 +0000 (Fri, 21 Jun 2024)");
  script_tag(name:"creation_date", value:"2013-09-11 17:22:16 +0530 (Wed, 11 Sep 2013)");
  script_name("Microsoft Office Compatibility Pack Remote Code Execution Vulnerabilities (2845537)");

  script_tag(name:"summary", value:"This host is missing an important security update according to
  Microsoft Bulletin MS13-072.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");

  script_tag(name:"insight", value:"Multiple flaws are due to error exists when processing XML data and some
  unspecified errors.");

  script_tag(name:"affected", value:"Compatibility Pack for Microsoft Office 2007 file formats");

  script_tag(name:"impact", value:"Successful exploitation will allow remote attackers to execute the arbitrary
  code, cause memory corruption and compromise the system.");

  script_tag(name:"qod_type", value:"executable_version");
  script_tag(name:"solution_type", value:"VendorFix");

  script_xref(name:"URL", value:"http://secunia.com/advisories/54737");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62162");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62165");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62168");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62169");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62170");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62171");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62216");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62217");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62220");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62222");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62223");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62224");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/62226");
  script_xref(name:"URL", value:"http://support.microsoft.com/kb/2760823");
  script_xref(name:"URL", value:"https://technet.microsoft.com/en-us/security/bulletin/ms13-072");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2013 Greenbone AG");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("secpod_office_products_version_900032.nasl");
  script_require_ports(139, 445);
  script_mandatory_keys("SMB/Office/WordCnv/Version");

  exit(0);
}

include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

wordcnvVer = get_kb_item("SMB/Office/WordCnv/Version");
if(wordcnvVer && wordcnvVer =~ "^12\.")
{
  # Office Word Converter
  path = registry_get_sz(key:"SOFTWARE\Microsoft\Windows\CurrentVersion",
                              item:"ProgramFilesDir");
  if(path)
  {
    sysVer = fetch_file_version(sysPath:path + "\Microsoft Office\Office12", file_name:"Wordcnv.dll");

    if(sysVer)
    {
      if(version_in_range(version:sysVer, test_version:"12.0", test_version2:"12.0.6683.5000"))
      {
        security_message( port: 0, data: "The target host was found to be vulnerable" );
        exit(0);
      }
    }
  }
}

Related

openvas 7
nessus 2
cve 13
nvd 13
cvelist 13
securityvulns 2
prion 13
mskb 1
symantec 13
seebug 2
ptsecurity 1
checkpoint_advisories 5
openvas
openvas
Microsoft Office Word Remote Code Execution Vulnerabilities (2845537)
2013-09-11 00:00:00
Microsoft Office Word Viewer Remote Code Execution Vulnerabilities (2845537)
2013-09-11 00:00:00
Microsoft Office Remote Code Execution Vulnerabilities (2845537)
2013-09-11 00:00:00
nessus
nessus
MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2845537)
2013-09-11 00:00:00
MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2834052)
2013-09-11 00:00:00
cve
cve
CVE-2013-3847
2013-09-11 14:03:48
CVE-2013-3858
2013-09-11 14:03:48
CVE-2013-3848
2013-09-11 14:03:48
nvd
nvd
CVE-2013-3847
2013-09-11 14:03:48
CVE-2013-3848
2013-09-11 14:03:48
CVE-2013-3849
2013-09-11 14:03:48
cvelist
cvelist
CVE-2013-3848
2013-09-11 10:00:00
CVE-2013-3858
2013-09-11 10:00:00
CVE-2013-3849
2013-09-11 10:00:00
securityvulns
securityvulns
Microsoft Office multiple security vulnerabilities
2013-09-11 00:00:00
Microsoft Sharepoint Server multiple security vulnerabilities
2013-10-03 00:00:00
prion
prion
Memory corruption
2013-09-11 14:03:00
Memory corruption
2013-09-11 14:03:00
Memory corruption
2013-09-11 14:03:00
mskb
mskb
MS13-067: Vulnerabilities in Microsoft SharePoint Server could allow remote code execution: September 10, 2013
2013-09-10 00:00:00
symantec
symantec
Microsoft Word CVE-2013-3851 Remote Memory Corruption Vulnerability
2013-09-10 00:00:00
Microsoft Word CVE-2013-3160 XML Files Handling Information Disclosure Vulnerability
2013-09-10 00:00:00
Microsoft Word CVE-2013-3850 Remote Memory Corruption Vulnerability
2013-09-10 00:00:00
seebug
seebug
Microsoft Word XMLζ–‡δ»Άε€„η†δΏ‘ζ―ζ³„ιœ²ζΌζ΄ž(CVE-2013-3160)(MS13-072)
2013-09-13 00:00:00
Microsoft WordθΏœη¨‹ε†…ε­˜η ΄εζΌζ΄ž(CVE-2013-3858)(MS13-072)
2013-09-13 00:00:00
ptsecurity
ptsecurity
PT-2013-73: XML External Entities Resolution vulnerability in Microsoft Office Word
2012-11-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Word Memory Corruption (MS13-072: CVE-2013-3850)
2013-09-10 00:00:00
Microsoft Word Memory Corruption (MS13-072: CVE-2013-3854)
2013-09-10 00:00:00
Microsoft Word Memory Corruption (MS13-072: CVE-2013-3852)
2013-09-10 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.872 High

EPSS

Percentile

98.6%

JSON
Related for OPENVAS:1361412562310903404
openvas7nessus2cve13nvd13cvelist13securityvulns2prion13mskb1symantec13seebug2ptsecurity1checkpoint_advisories5