Description
Microsoft FrontPage 2003 SP3 does not properly parse DTDs, which allows remote attackers to obtain sensitive information via crafted XML data in a FrontPage document, aka "XML Disclosure Vulnerability."
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-078
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert
http://www.us-cert.gov/ncas/alerts/TA13-253A
Scores
EPSS
0.3244
EPSS Percentile
98.1%
Details
CWE
CWE-200
Status
published
Products (1)
microsoft/frontpage
2003 sp3
Published
Sep 11, 2013
Tracked Since
Feb 18, 2026