CyberSec.Space Logo
Back to CVE Browser

CVE-2013-3848

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0670%
EPSS Percentile31.14th
PublishedSep 11, 2013
Last ModifiedApr 29, 2026

Vulnerability Description

Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word Web App 2010 SP1 in Office Web Apps 2010, Word 2003 SP3, Word 2007 SP3, Word 2010 SP1, Office Compatibility Pack SP3, and Word Viewer allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Word Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3847, CVE-2013-3849, and CVE-2013-3858.

Affected Platforms (CPE)

πŸ“¦
Microsoft

Office Web Apps

= 2010
πŸ“¦
Microsoft

Office Compatibility Pack

All versions
πŸ“¦
Microsoft

Word

= 2003
πŸ“¦
Microsoft

Word

= 2007
πŸ“¦
Microsoft

Word

= 2010
πŸ“¦
Microsoft

Word Viewer

All versions
πŸ“¦
Microsoft

Sharepoint Server

= 2010

References & Advisories

πŸ”— http://www.us-cert.gov/ncas/alerts/TA13-253A
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-067
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-072
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18281
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18800
πŸ”— http://www.us-cert.gov/ncas/alerts/TA13-253A
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-067
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-072

Related Vulnerabilities

CVE-2013-133010.0

The default configuration of Microsoft SharePoint Portal Server 2003 SP3, SharePoint Server 2007 SP3 and 2010 SP1 and SP2, and Off...

CVE-2010-32149.3

Stack-based buffer overflow in Microsoft Word 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004 and 2008 for Mac; Open XML File ...

CVE-2011-06559.3

Microsoft PowerPoint 2007 SP2 and 2010; Office 2004, 2008, and 2011 for Mac; Open XML File Format Converter for Mac; Office Compat...

CVE-2011-06569.3

Microsoft PowerPoint 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004, 2008, and 2011 for Mac; Open XML File Format Converter f...