CVE-2013-0007
Microsoft XML Core Services (aka MSXML) 4.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML XSLT Vulnerability."
Code Injection
Vendor | Product | Version |
---|---|---|
microsoft | xml_core_services | 3.0 |
microsoft | xml_core_services | 4.0 |
microsoft | xml_core_services | 6.0 |
microsoft | windows_7 | - |
microsoft | windows_7 | - |
microsoft | windows_8 | - |
microsoft | windows_server_2003 | * |
microsoft | windows_server_2008 | - |
microsoft | windows_server_2008 | - |
microsoft | windows_server_2012 | - |
microsoft | windows_vista | * |
microsoft | windows_xp | - |
microsoft | xml_core_services | 4.0 |
microsoft | xml_core_services | 6.0 |
microsoft | windows_7 | - |
microsoft | windows_rt | - |
microsoft | windows_server_2003 | * |
microsoft | windows_server_2008 | * |
microsoft | windows_vista | * |
microsoft | windows_xp | * |
microsoft | xml_core_services | 5.0 |
microsoft | expression_web | * |
microsoft | office_compatibility_pack | * |
microsoft | office_compatibility_pack | * |
microsoft | word_viewer | * |
Common Weakness Enumeration