admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-09-17 18:45:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2013/CVE-2013-38xx/CVE-2013-3859.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

118 lines
3.8 KiB
JSON
Raw Blame History

{
"id": "CVE-2013-3859",
"sourceIdentifier": "secure@microsoft.com",
"published": "2013-09-11T14:03:48.307",
"lastModified": "2024-11-21T01:54:26.127",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Microsoft Pinyin IME 2010, when used in conjunction with Microsoft Office 2010 SP1, does not properly restrict configuration options, which allows local users to gain privileges by starting Internet Explorer from the IME toolbar, aka \"Chinese IME Vulnerability.\""
},
{
"lang": "es",
"value": "Microsoft Pinyin IME 2010, cuando es utilizado en conjunto con Microsoft Office 2010 SP1, no restringe las opciones de configuraci\u00f3n apropiadamente, lo que permite a usuarios locales conseguir privilegios arrancando Internet Explorer desde la barra de herramientas IME, tambien conocido como \"Vulnerabilidad IME Chino\"."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"baseScore": 6.9,
"accessVector": "LOCAL",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"availabilityImpact": "COMPLETE"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-264"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2010:sp1:*:*:*:*:*:*",
"matchCriteriaId": "9932C177-FCBB-4AD1-A42A-1FAB28F392F3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2010:sp1:x64:*:*:*:*:*",
"matchCriteriaId": "8239CEF1-BD02-4ACE-A0C2-75A9EAA15914"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:office:2010:sp1:x86:*:*:*:*:*",
"matchCriteriaId": "8383FADC-9391-4570-AAF9-92A952A4F04F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:pinyin_ime:2010:*:*:*:*:*:x64:*",
"matchCriteriaId": "81AA94DF-177C-430E-B260-E425F9B2811A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:microsoft:pinyin_ime:2010:*:*:*:*:x86:*:*",
"matchCriteriaId": "62964888-CBEB-4A3B-ADBD-07428A1CD2CC"
}
]
}
]
}
],
"references": [
{
"url": "http://www.us-cert.gov/ncas/alerts/TA13-253A",
"source": "secure@microsoft.com",
"tags": [
"US Government Resource"
]
},
{
"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-075",
"source": "secure@microsoft.com"
},
{
"url": "http://www.us-cert.gov/ncas/alerts/TA13-253A",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"US Government Resource"
]
},
{
"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-075",
"source": "af854a3a-2127-422b-91ae-364da2661108"
}
]
}
Reference in New Issue View Git Blame Copy Permalink