Buffer Underflow Vulnerability in Microsoft Publisher 2003 SP3
CVE-2013-1329

Currently unrated

Key Information:

Vendor: Microsoft
Status: Publisher
Vendor: CVE Published:; 15 May 2013

What is CVE-2013-1329?

A buffer underflow vulnerability exists in Microsoft Publisher 2003 SP3 due to an integer signedness error. This flaw can be exploited by remote attackers through specially crafted Publisher files. If successfully executed, the attack may allow an unauthorized user to execute arbitrary code on the affected system. Users are advised to apply the appropriate security updates to mitigate potential risks.

References

http://www.us-cert.gov/ncas/alerts/TA13-134A

third-party-advisoryx_refsource_CERT

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

59% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 15, 2013
Vulnerability Reserved
Jan 12, 2013