CVE-2010-3333

Exp

Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via crafted RTF data, aka "RTF Stack Buffer Overflow Vulnerability."

Published: 2010-11-10 Last update: 2026-06-16 Assigner: [email protected] Source: [email protected]
NVD Status:AnalyzedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2010-3333 is rated Critical Active Threat (86.8/100): CVSS High severity, with high exploitation likelihood (EPSS 89.50%, 100th percentile). CISA KEV confirms active exploitation (added 2022-03-03) affecting Microsoft / Office. a weakness (CWE-787) Unauthenticated remote administrative access may be possible. The CISA remediation deadline has passed—treat as an emergency patch priority.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

CISA KEV Record for CVE-2010-3333

Name: Microsoft Office Stack-based Buffer Overflow Vulnerability · CISA KEV detail

Exploit added: 2022-03-03

Action due: 2022-03-24

Required action: Apply updates per vendor instructions.

Public exploit references (Exploit-DB) for CVE-2010-3333

EDB-ID Source Kind Published Link
24526 exploit_db edb 2013-02-20 Exploit-DB ↗
18334 exploit_db edb 2012-01-08 Exploit-DB ↗
17474 exploit_db edb 2011-07-03 Exploit-DB ↗
16686 exploit_db edb 2011-03-04 Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2010-3333

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 93.79% 89.50% -4.29%
2 2025-12-04 93.86% 93.79% -0.08%
3 2025-09-26 93.86%

Full EPSS history (11 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2010-3333

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
7.8 3.1 HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Click to expand
Attack vector (AV:L)
They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by.
Attack complexity (AC:L)
Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:N)
No account or special rights needed—anonymous or random user is enough.
User interaction (UI:R)
A real person has to do something—click, install, enable—otherwise it doesn’t land.
Scope (S:U)
Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H)
Serious risk that confidential data gets exposed in a big way.
Integrity (I:H)
They could widely tamper with or forge data—trust in the data is badly hurt.
Availability (A:H)
Could take the service down hard or make it unusable for people who depend on it.
 1.8 5.9 [email protected]
7.8 3.1 HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Click to expand
Attack vector (AV:L)
They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by.
Attack complexity (AC:L)
Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:N)
No account or special rights needed—anonymous or random user is enough.
User interaction (UI:R)
A real person has to do something—click, install, enable—otherwise it doesn’t land.
Scope (S:U)
Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H)
Serious risk that confidential data gets exposed in a big way.
Integrity (I:H)
They could widely tamper with or forge data—trust in the data is badly hurt.
Availability (A:H)
Could take the service down hard or make it unusable for people who depend on it.
 1.8 5.9 134c704f-9b21-4f2e-91b3-4a467353bcc0
9.3 2.0 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:M)
Exploitation needs some favorable conditions, but not exceptional ones.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:C)
Complete confidentiality impact.
Integrity impact (I:C)
Complete integrity impact.
Availability impact (A:C)
Complete availability impact.
 8.6 10.0 [email protected]

Weakness enumeration for CVE-2010-3333

Affected software / configurations for CVE-2010-3333

Vendor Product Version Raw CPE
microsoft office 2003 cpe:2.3:a:microsoft:office:2003:sp3:*:*:*:*:*:*
microsoft office 2004 cpe:2.3:a:microsoft:office:2004:*:*:*:*:macos:*:*
microsoft office 2007 cpe:2.3:a:microsoft:office:2007:sp2:*:*:*:*:*:*
microsoft office 2008 cpe:2.3:a:microsoft:office:2008:*:*:*:*:macos:*:*
microsoft office 2010 cpe:2.3:a:microsoft:office:2010:*:*:*:*:*:*:*
microsoft office 2011 cpe:2.3:a:microsoft:office:2011:*:*:*:*:macos:*:*
microsoft office xp cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
microsoft open_xml_file_format_converter cpe:2.3:a:microsoft:open_xml_file_format_converter:-:*:*:*:*:macos:*:*

References for CVE-2010-3333

URL Tags
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=880 Broken Link
http://secunia.com/advisories/38521 Broken Link
http://secunia.com/advisories/42144 Broken Link
http://securityreason.com/securityalert/8293 Broken Link
http://www.securityfocus.com/bid/44652 Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1024705 Broken Link Third Party Advisory VDB Entry
http://www.us-cert.gov/cas/techalerts/TA10-313A.html Third Party Advisory US Government Resource
http://www.vupen.com/english/advisories/2010/2923 Broken Link
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-087 Patch Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11931 Broken Link
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2010-3333 US Government Resource
cvelogic Threat Intelligence