Executive Summary
| Summary | |
|---|---|
| Title | Vulnerability in Microsoft Office for Mac Could Allow Information Disclosure (2813682) |
| Informations | |||
|---|---|---|---|
| Name | MS13-026 | First vendor Publication | 2013-03-12 |
| Vendor | Microsoft | Last vendor Modification | 2013-03-15 |
| Severity (Vendor) | Important | Revision | 1.1 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N) | |||
|---|---|---|---|
| Cvss Base Score | 5 | Attack Range | Network |
| Cvss Impact Score | 2.9 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Revision Note: V1.1 (March 15, 2013): Corrected bulletin title and clarified affected version names in the vulnerability details and vulnerability FAQs. |
Original Source
| Url : http://technet.microsoft.com/en-us/security/bulletin/ms13-026 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-200 | Information Exposure |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:16082 | |||
| Oval ID: | oval:org.mitre.oval:def:16082 | ||
| Title: | Unintended content loading vulnerability - MS13-026 | ||
| Description: | Outlook in Microsoft Office for Mac 2008 before 12.3.6 and Office for Mac 2011 before 14.3.2 allows remote attackers to trigger access to a remote URL and consequently confirm the rendering of an HTML e-mail message by including unspecified HTML5 elements and leveraging the installation of a WebKit browser on the victim's machine, aka "Unintended Content Loading Vulnerability." | ||
| Family: | macos | Class: | vulnerability |
| Reference(s): | CVE-2013-0095 | Version: | 3 |
| Platform(s): | Apple Mac OS X Apple Mac OS X Server | Product(s): | Microsoft Office 2008 for Mac Microsoft Office 2011 for Mac |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 2 |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2013-03-12 | Name : An application installed on the remote Mac OS X host is affected by an inform... File : macosx_ms13-026.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:47:36 |
|
| 2013-11-04 21:33:40 |
|
| 2013-03-16 18:31:55 |
|
| 2013-03-16 00:19:25 |
|
| 2013-03-16 00:15:39 |
|
| 2013-03-12 22:08:53 |
|
| 2013-03-12 22:05:12 |
|
