9.3
CVE-2010-3946
- EPSS 21.6%
- Veröffentlicht 16.12.2010 19:33:02
- Zuletzt bearbeitet 16.06.2026 23:23:52
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Integer overflow in the PICT image converter in the graphics filters in Microsoft Office XP SP3, Office 2003 SP3, and Office Converter Pack allows remote attackers to execute arbitrary code via a crafted PICT image in an Office document, aka "PICT Image Converter Integer Overflow Vulnerability."
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 21.6% | 0.973 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://www.us-cert.gov/cas/techalerts/TA10-348A.html
http://www.securitytracker.com/id?1024887
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-105
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11967