CVE-2013-1331

Buffer overflow in Microsoft Office 2003 SP3 and Office 2011 for Mac allows remote attackers to execute arbitrary code via crafted PNG data in an...

Basic Information

CVE State: PUBLISHED
Reserved Date: January 12, 2013
Published Date: June 12, 2013
Last Updated: February 10, 2025
Vendor: n/a
Product: n/a
Description: Buffer overflow in Microsoft Office 2003 SP3 and Office 2011 for Mac allows remote attackers to execute arbitrary code via crafted PNG data in an Office document, leading to improper memory allocation, aka "Office Buffer Overflow Vulnerability."

CVSS Scores

CVSS v3.1

7.8 - HIGH

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC Information

Exploitation: active
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (added 2022-06-08 00:00:00 UTC) Source

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16713 http://www.us-cert.gov/ncas/alerts/TA13-168A https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16732 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-051

Known Exploited Vulnerability Information

Source	Added Date
CISA	2022-06-08 00:00:00 UTC