This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.
The version of Microsoft Office installed on the remote host has
The Publisher component of Microsoft Office installed on the remote
host is affected by multiple vulnerabilities :
- The application could allow overwriting function
pointers in memory. (CVE-2011-1508)
- The application could allow indexing an out-of-bounds
array in memory. (CVE-2011-3410)
- The application has an invalid pointer vulnerability.
- The application has a memory corruption vulnerability.
A remote attacker could exploit these by tricking a user into opening
a specially crafted Publisher file, resulting in remote code
See also :
Microsoft has released a set of patches for Microsoft Office 2003
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.3
Public Exploit Available : true