CVE-2013-3137

Microsoft FrontPage 2003 SP3 - Info Disclosure

Title source: llm
STIX 2.1

Description

Microsoft FrontPage 2003 SP3 does not properly parse DTDs, which allows remote attackers to obtain sensitive information via crafted XML data in a FrontPage document, aka "XML Disclosure Vulnerability."

References (2)

Core 2
Core References
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/ncas/alerts/TA13-253A

Scores

EPSS 0.3244
EPSS Percentile 98.1%

Details

CWE
CWE-200
Status published
Products (1)
microsoft/frontpage 2003 sp3
Published Sep 11, 2013
Tracked Since Feb 18, 2026