XML Disclosure Vulnerability in Microsoft FrontPage 2003 SP3
CVE-2013-3137

Currently unrated

Key Information:

Vendor: Microsoft
Status: Frontpage
Vendor: CVE Published:; 11 September 2013

What is CVE-2013-3137?

The vulnerability in Microsoft FrontPage 2003 SP3 arises from inadequate parsing of Document Type Definitions (DTDs), permitting remote attackers to exploit crafted XML data found within a FrontPage document. This can lead to unauthorized access to sensitive information, posing risks to data confidentiality and integrity. It is essential for users and administrators to apply relevant security updates to mitigate the potential impacts associated with this vulnerability.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.us-cert.gov/ncas/alerts/TA13-253A

third-party-advisoryx_refsource_CERT

EPSS Score

12% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 11, 2013
Vulnerability Reserved
Apr 17, 2013