CVE-2013-1316

Name of the Vulnerable Software and Affected Versions Microsoft Publisher version 2003 SP3

Description A remote code execution issue exists due to improper validation of an unspecified array size when parsing Publisher files. This allows attackers to execute arbitrary code via a crafted file. Successful exploitation could grant an attacker complete control of the affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. The impact may be less severe for users with limited user rights compared to those with administrative rights.

Recommendations For Microsoft Publisher 2003 SP3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.