Executive Summary

Summary
TitleVulnerability in FrontPage Could Allow Information Disclosure (2825621)
Informations
NameMS13-078First vendor Publication2013-09-10
VendorMicrosoftLast vendor Modification2013-09-10
Severity (Vendor) ImportantRevision1.0

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:N/A:N)
Cvss Base Score4.3Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Revision Note: V1.0 (September 10, 2013): Bulletin published.

Summary: This security update resolves a privately reported vulnerability in Microsoft FrontPage. The vulnerability could allow information disclosure if a user opens a specially crafted FrontPage document. The vulnerability cannot be exploited automatically; for an attack to be successful a user must be convinced to open the specially crafted document.

Original Source

Url : http://technet.microsoft.com/en-us/security/bulletin/ms13-078

CWE : Common Weakness Enumeration

%idName
100 %CWE-200Information Exposure

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1

Information Assurance Vulnerability Management (IAVM)

DateDescription
2013-09-12IAVM : 2013-B-0101 - Microsoft FrontPage Information Disclosure Vulnerability
Severity : Category I - VMSKEY : V0040302

Snort® IPS/IDS

DateDescription
2014-01-10XML parameter entity reference local file disclosure attempt
RuleID : 26626 - Revision : 6 - Type : FILE-OFFICE

Nessus® Vulnerability Scanner

DateDescription
2013-09-11Name : The remote host is affected by an information disclosure vulnerability.
File : smb_nt_ms13-078.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
DateInformations
2014-02-17 11:47:48
  • Multiple Updates
2014-01-19 21:30:59
  • Multiple Updates
2013-11-11 12:41:36
  • Multiple Updates
2013-09-12 13:24:10
  • Multiple Updates
2013-09-11 21:22:46
  • Multiple Updates
2013-09-10 21:20:35
  • First insertion