Executive Summary
Summary | |
---|---|
Title | Vulnerability in Microsoft Office for Mac Could Allow Information Disclosure (2813682) |
Informations | |||
---|---|---|---|
Name | MS13-026 | First vendor Publication | 2013-03-12 |
Vendor | Microsoft | Last vendor Modification | 2013-03-15 |
Severity (Vendor) | Important | Revision | 1.1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N) | |||
---|---|---|---|
Cvss Base Score | 5 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V1.1 (March 15, 2013): Corrected bulletin title and clarified affected version names in the vulnerability details and vulnerability FAQs. |
Original Source
Url : http://technet.microsoft.com/en-us/security/bulletin/ms13-026 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-200 | Information Exposure |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:16082 | |||
Oval ID: | oval:org.mitre.oval:def:16082 | ||
Title: | Unintended content loading vulnerability - MS13-026 | ||
Description: | Outlook in Microsoft Office for Mac 2008 before 12.3.6 and Office for Mac 2011 before 14.3.2 allows remote attackers to trigger access to a remote URL and consequently confirm the rendering of an HTML e-mail message by including unspecified HTML5 elements and leveraging the installation of a WebKit browser on the victim's machine, aka "Unintended Content Loading Vulnerability." | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2013-0095 | Version: | 3 |
Platform(s): | Apple Mac OS X Apple Mac OS X Server | Product(s): | Microsoft Office 2008 for Mac Microsoft Office 2011 for Mac |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 2 |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-03-12 | Name : An application installed on the remote Mac OS X host is affected by an inform... File : macosx_ms13-026.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:47:36 |
|
2013-11-04 21:33:40 |
|
2013-03-16 18:31:55 |
|
2013-03-16 00:19:25 |
|
2013-03-16 00:15:39 |
|
2013-03-12 22:08:53 |
|
2013-03-12 22:05:12 |
|