CVE-2010-3333

high

Microsoft ⚠️ CISA KEV — Exploited in the Wild

CVSS v3 Base Score

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

93.8%

Exploitation probability in 30 days

Top 0% most likely to be exploited

Attack Characteristics

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Confidentiality

High

Integrity

High

Availability

High

Published: November 10, 2010 (5664 days ago)

Last Modified: April 22, 2026

Vendor: Microsoft

Source: NVD

⚠️ CISA Known Exploited Vulnerability

Added to KEV: 2022-03-03

Remediation Due: 2022-03-24 (⚠ 1513d overdue)

Description

Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via crafted RTF data, aka "RTF Stack Buffer Overflow Vulnerability."

CWE

CWE-787

Affected Products

microsoft officemicrosoft open xml file format converter

References

🔗 labs.idefense.com 🔗 secunia.com 🔗 secunia.com 🔗 securityreason.com 🔗 www.securityfocus.com

CVE-2010-3333

⚠️ CISA Known Exploited Vulnerability

Vulnerability Report

Description

CWE

Affected Products

References