CVE-2011-3411 in Officeinfo

Summary

Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that leverages incorrect handling of values in memory, aka "Publisher Invalid Pointer Vulnerability."

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

09/09/2011

Disclosure

12/13/2011

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
4470Microsoft Office code injection94Proof-of-ConceptOfficial fixCVE-2011-3411

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!