kevthehermit's comment on CVE-2010-3333

Description

Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via crafted RTF data, aka “RTF Stack Buffer Overflow Vulnerability.”

Add Assessment

dmelcher5151 (19)

April 15, 2020 4:16pm UTC (4 years ago)•Edited 4 years ago

Ratings

Attacker Value

Very High

Exploitability

High

Common in enterprise Easy to weaponize Vulnerable in default configuration Requires user interaction

Technical Analysis

Was the bread and butter for many phishing campaigns for years.

See More &3 repliesSee Less

kevthehermit (138) April 15, 2020 6:54pm UTC (4 years ago)

Thanks,

Can you add any more context to this report, that would help people understand the risks wIth this exploit?
As it is from 2010 I would not expect it to to have significant attacker value or be common in enterprise environments any more.

dmelcher5151 (19) April 15, 2020 7:10pm UTC (4 years ago)

I replied to your other similar comment on 2012-0158, but said another way it’s hard for me to imagine the purpose of this rating system is to go through and down-rate vulnerabilities over time as patches are created and deployed. The rating I gave is my opinion based on the vulnerability at the time it came out. If your Office isn’t vulnerable to this exploit (and it shouldn’t be), then obviously the rating doesn’t apply to you. This is even true of 0-days.

kevthehermit (138) April 15, 2020 8:08pm UTC (4 years ago)

Thank you, I agree that over time I would not expect to continuously adjust the scores and I completely agree with your statements, I just think that it would be useful for others who may not know to include that kind of detail in the initial analysis.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

7.8 High

Impact Score:

5.9

Exploitability Score:

1.8

Vector:

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector (AV):

Local

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

Required

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

Vendors

microsoft

Products

office 2003,
office 2004,
office 2007,
office 2008,
office 2010,
office 2011,
office xp,
open xml file format converter -

Metasploit Modules

MS10-087 Microsoft Word RTF pFragments Stack Buffer Overflow (File Format) (https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ms10_087_rtf_pfragments_bof.rb)

Exploited in the Wild

Reported by:

AttackerKB Worker

Reported: September 25, 2020 8:38pm UTC (4 years ago)

gwillcox-r7 indicated sources as

Government or Industry Alert (https://us-cert.cisa.gov/sites/default/files/publications/AR-17-20045_Enhanced_Analysis_of_GRIZZLY_STEPPE_Activity.pdf)
Threat Feed (https://www.cisa.gov/known-exploited-vulnerabilities-catalog)

Reported: November 03, 2021 3:22pm UTC (3 years ago) • Edited 2 years ago

AttackerKB Worker indicated source as Government or Industry Alert (https://www.cisa.gov/known-exploited-vulnerabilities-catalog)

Reported: November 08, 2024 8:25am UTC (2 weeks ago)

References

Rapid7

Very High

CVE-2010-3333

Very High

High

Required

None

Local

CVE-2010-3333

Description

Add Assessment

Ratings

Technical Analysis

CVSS V3 Severity and Metrics

General Information

Vendors

Products

Metasploit Modules

Exploited in the Wild

References

Canonical

Advisory

Miscellaneous

Additional Info

Technical Analysis

Very High

CVE-2010-3333

Very High

High

Required

None

Local

CVE-2010-3333

Description

Add Assessment

Ratings

Technical Analysis

CVSS V3 Severity and Metrics

General Information

Vendors

Products

Metasploit Modules

Exploited in the Wild

References

Canonical

Advisory

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification