Executive Summary

Summary
TitleVulnerabilities in Microsoft Access Could Allow Remote Code Execution (2848637)
Informations
NameMS13-074First vendor Publication2013-09-10
VendorMicrosoftLast vendor Modification2013-09-13
Severity (Vendor) ImportantRevision1.1

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score9.3Attack RangeNetwork
Cvss Impact Score10Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Revision Note: V1.1 (September 13, 2013): Revised bulletin to announce a detection change for the Microsoft Access 2013 (64-bit editions) update (2810009). This is a detection change only. There were no changes to the update files. Customers who have successfully installed the update do not need to take any action.

Summary: This security update resolves three privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Access file with an affected version of Microsoft Access. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Original Source

Url : http://technet.microsoft.com/en-us/security/bulletin/ms13-074

CWE : Common Weakness Enumeration

%idName
100 %CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:18664
 
Oval ID: oval:org.mitre.oval:def:18664
Title: Access Memory Corruption Vulnerability (CVE-2013-3157) - MS13-074
Description: Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft Office allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Access file, aka "Access Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3155.
Family: windows Class: vulnerability
Reference(s): CVE-2013-3157
Version: 12
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Microsoft Office Access 2007
Microsoft Office Access 2010
Microsoft Office Access 2013
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:18442
 
Oval ID: oval:org.mitre.oval:def:18442
Title: Access File Format Memory Corruption Vulnerability (CVE-2013-3156) - MS13-074
Description: Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft Office allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Access file, aka "Access File Format Memory Corruption Vulnerability."
Family: windows Class: vulnerability
Reference(s): CVE-2013-3156
Version: 12
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Microsoft Office Access 2007
Microsoft Office Access 2010
Microsoft Office Access 2013
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:18624
 
Oval ID: oval:org.mitre.oval:def:18624
Title: Access Memory Corruption Vulnerability (CVE-2013-3155) - MS13-074
Description: Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft Office allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Access file, aka "Access Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3157.
Family: windows Class: vulnerability
Reference(s): CVE-2013-3155
Version: 12
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Microsoft Office Access 2007
Microsoft Office Access 2010
Microsoft Office Access 2013
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application7

Information Assurance Vulnerability Management (IAVM)

DateDescription
2013-09-12IAVM : 2013-B-0099 - Multiple Remote Code Execution Vulnerabilities in Microsoft Access
Severity : Category II - VMSKEY : V0040287

Snort® IPS/IDS

DateDescription
2019-04-02Microsoft Access arbitrary code execution attempt
RuleID : 49300 - Revision : 3 - Type : FILE-OFFICE
2019-04-02Microsoft Access arbitrary code execution attempt
RuleID : 49299 - Revision : 3 - Type : FILE-OFFICE
2019-03-28Microsoft Access arbitrary code execution attempt
RuleID : 49286 - Revision : 3 - Type : FILE-OFFICE
2019-03-28Microsoft Access arbitrary code execution attempt
RuleID : 49285 - Revision : 2 - Type : FILE-OFFICE
2014-11-16Microsoft Access memory corruption attempt
RuleID : 31537 - Revision : 3 - Type : FILE-OFFICE
2014-11-16Microsoft Access memory corruption attempt
RuleID : 31536 - Revision : 3 - Type : FILE-OFFICE
2014-11-16Microsoft Access memory corruption attempt
RuleID : 31535 - Revision : 3 - Type : FILE-OFFICE
2014-11-16Microsoft Access memory corruption attempt
RuleID : 31534 - Revision : 3 - Type : FILE-OFFICE

Nessus® Vulnerability Scanner

DateDescription
2013-09-11Name : It is possible to execute arbitrary code on the remote host through Microsoft...
File : smb_nt_ms13-074.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
DateInformations
2014-11-16 21:25:25
  • Multiple Updates
2014-02-17 11:47:47
  • Multiple Updates
2013-11-11 12:41:36
  • Multiple Updates
2013-09-13 21:16:37
  • Multiple Updates
2013-09-12 13:24:09
  • Multiple Updates
2013-09-11 21:22:45
  • Multiple Updates
2013-09-10 21:20:43
  • First insertion