NVD

Id
13392  
Name
CVE-2010-1900  
Description
Microsoft Office Word 2002 SP3, 2003 SP3, and 2007 SP2; Microsoft Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Word Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; and Works 9 do not properly handle malformed records in a Word file, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, aka "Word Record Parsing Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-08-11  
Modified Date
2010-09-17  
Seq
2010-1900  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
74116 13392 CVE-2010-1900 oval:org.mitre.oval:def:11490  View
74117 13392 CVE-2010-1900 MS10-056  View
74118 13392 CVE-2010-1900 TA10-222A  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
36134 JVNDB-2010-001914 複数の Microsoft Office 製品における任意のコードを実行される脆弱性 複数のMicrosoft Office 製品には、Word ファイル内の不正なレコードを適切に処理しないため、任意のコードを実行される、またはサービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2010-1900 44480 CVE-2010-1900 13392 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001914.html 2010-08-10 2010-09-01 View