Home

CVE-2012-2524

Description

Microsoft Office 2007 SP2 and SP3 and 2010 SP1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Computer Graphics Metafile (CGM) file, aka CGM File Format Memory Corruption Vulnerability.

Risk Information

Base Score
7.8
MODERATE
Vector
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
53.228

Associated Vulnerability

VulnerabilityOS Platform
Security Update for Microsoft Office 2007 suites (KB2596615)Windows
Security Update for Microsoft Office 2010 (KB2553260) 32-Bit EditionWindows
Security Update for Microsoft Office 2010 (KB2553260) 64-Bit EditionWindows
Security Update for Microsoft Office 2010 (KB2589322) 32-Bit EditionWindows
Security Update for Microsoft Office 2010 (KB2589322) 64-Bit EditionWindows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234