Shodan
Vulnerabilities
Vulnerable Software
Microsoft:  >> Publisher  >> 2003  Security Vulnerabilities
CVE-2014-1759
pubconv.dll in Microsoft Publisher 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code or cause a denial of service (incorrect pointer dereference and application crash) via a crafted .pub file, aka "Arbitrary Pointer Dereference Vulnerability."
CVSS Score
9.3
EPSS Score
0.215
Published
2014-04-08
CVE-2013-1316
Microsoft Publisher 2003 SP3 does not properly validate the size of an unspecified array, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Negative Value Allocation Vulnerability."
CVSS Score
9.3
EPSS Score
0.59
Published
2013-05-15
CVE-2013-1317
Integer overflow in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers an improper allocation-size calculation, aka "Publisher Integer Overflow Vulnerability."
CVSS Score
9.3
EPSS Score
0.651
Published
2013-05-15
CVE-2013-1318
Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers access to an invalid pointer, aka "Publisher Corrupt Interface Pointer Vulnerability."
CVSS Score
10.0
EPSS Score
0.614
Published
2013-05-15
CVE-2013-1319
Microsoft Publisher 2003 SP3 does not properly check the return value of an unspecified method, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Return Value Handling Vulnerability."
CVSS Score
10.0
EPSS Score
0.614
Published
2013-05-15
CVE-2013-1320
Buffer overflow in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Buffer Overflow Vulnerability."
CVSS Score
10.0
EPSS Score
0.596
Published
2013-05-15
CVE-2013-1321
Microsoft Publisher 2003 SP3 does not properly check the data type of an unspecified return value, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Return Value Validation Vulnerability."
CVSS Score
9.3
EPSS Score
0.537
Published
2013-05-15
CVE-2013-1322
Microsoft Publisher 2003 SP3 does not properly check table range data, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Invalid Range Check Vulnerability."
CVSS Score
10.0
EPSS Score
0.593
Published
2013-05-15
CVE-2013-1323
Microsoft Publisher 2003 SP3 does not properly handle NULL values for unspecified data items, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Incorrect NULL Value Handling Vulnerability."
CVSS Score
9.3
EPSS Score
0.541
Published
2013-05-15
CVE-2013-1327
Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers an improper memory allocation, aka "Publisher Signed Integer Vulnerability."
CVSS Score
9.3
EPSS Score
0.59
Published
2013-05-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved