PT-2013-2099 · Microsoft+1 · Office 2008 For Mac+2

Published

2013-03-13

Updated

2018-10-12

CVE-2013-0095

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Microsoft Office for Mac 2008 versions prior to 12.3.6 Microsoft Office for Mac 2011 versions prior to 14.3.2

Description The issue allows remote attackers to trigger access to a remote URL and confirm the rendering of an HTML e-mail message by including unspecified HTML5 elements. This is possible by leveraging the installation of a WebKit browser on the victim's machine.

Recommendations For Microsoft Office for Mac 2008 versions prior to 12.3.6, update to version 12.3.6 or later. For Microsoft Office for Mac 2011 versions prior to 14.3.2, update to version 14.3.2 or later.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2013-0095

Affected Products

Office 2008 For Mac

Office For Mac 2011

Webkit

PT-2013-2099 · Microsoft+1 · Office 2008 For Mac+2

CVE-2013-0095

Weakness Enumeration

Related Identifiers

Affected Products

References · 4