What is CVE-2013-0007?

CVE-2013-0007 is a vulnerability in Microsoft Expression_web, classified under Code Injection. Published 2013-01-09.

Is CVE-2013-0007 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Microsoft Expression_web

CVE-2013-0007

Microsoft XML Core Services (aka MSXML) 4.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML XSLT Vulnerability."

Vulnerability class: RCE (Remote Code Execution)

EPSS: 0.242 (96.2th percentile) — read the EPSS interpretation.

Affected products

Microsoft Expression_web — versions 2
Microsoft Groove_server — versions 2007
Microsoft Office — versions 2003, 2007
Microsoft Office_compatibility_pack
Microsoft Sharepoint_server — versions 2007
Microsoft Windows_7
Microsoft Windows_8
Microsoft Windows_rt
Microsoft Windows_server_2003
Microsoft Windows_server_2008 — versions r2

Weakness classification (CWE)

CWE-94 — Code Injection

Public proof-of-concept exploits

References

TA13-008A (US Government Resource, x_refsource_CERT, third-party-advisory)
oval:org.mitre.oval:def:15458 (x_refsource_OVAL, signature, vdb-entry)
MS13-002 (x_refsource_MS, vendor-advisory)

Frequently asked questions

What is CVE-2013-0007?: CVE-2013-0007 is a vulnerability in Microsoft Expression_web, classified under Code Injection. Published 2013-01-09.
Is CVE-2013-0007 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.