CVE-2013-3853

Name of the Vulnerable Software and Affected Versions Microsoft Office versions 2007 SP3 Word versions 2007 SP3

Description The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted Office document. Remote code execution vulnerabilities exist in the way that affected Microsoft Office software parses specially crafted files. An attacker who successfully exploits these vulnerabilities could take complete control of an affected system, then install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Office version 2007 SP3, update to a newer version to mitigate the risk. For Word version 2007 SP3, update to a newer version to mitigate the risk. As a temporary workaround, consider avoiding the use of crafted Office documents until a patch is available.