Description

Microsoft Excel 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Mac 2011; Excel Viewer; Office Compatibility Pack SP3; and Excel Services and Word Automation Services in SharePoint Server 2013 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Excel Memory Corruption Vulnerability."

Remediation

References

CVE-2013-3889

Related Vulnerabilities

WordPress Plugin Event Tickets CSV Injection (4.10.7.1)

WordPress Plugin WP-Contact Multiple Cross-Site Scripting Vulnerabilities (1.0)

WordPress Plugin OneLogin SAML SSO Security Bypass (2.2.0)

PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2001-1247)

WordPress 3.8.x Same Origin Method Execution (SOME) Vulnerability (3.8 - 3.8.13)

Severity

Critical

Classification

CVE-2013-3889 CWE-119

Tags

Missing Update Known Vulnerabilities