CVE-2013-1324

Name of the Vulnerable Software and Affected Versions Microsoft Office versions 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT

Description A remote code execution issue exists in the way that affected Microsoft Office software parses specially crafted WordPerfect document files. This could allow an attacker to execute arbitrary code and take complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. The impact may be less severe for users with fewer user rights on the system compared to those operating with administrative user rights.

Recommendations For Microsoft Office 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT, update to a version that is not affected by this issue to prevent remote code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.