Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMicrosoftCVE-2013-5065
HistoryNov 28, 2013 - 12:55 a.m.

CVE-2013-5065

2013-11-2800:55:04
microsoft
web.nvd.nist.gov
936
In Wild
cve-2013-5065
ndproxy.sys
privilege escalation
windows xp
server 2003
nvd

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.3

Confidence

Low

EPSS

0.432

Percentile

97.4%

JSON

NDProxy.sys in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application, as exploited in the wild in November 2013.

Affected configurations

Nvd
Node
microsoftwindows_2003_serverMatch-sp2
OR
microsoftwindows_xpMatch-sp2professional
OR
microsoftwindows_xpMatch-sp3
VendorProductVersionCPE
microsoftwindows_xp-cpe:/o:microsoft:windows_xp:-:sp2:professional:
microsoftwindows_2003_server-cpe:/o:microsoft:windows_2003_server:-:sp2::
microsoftwindows_xp-cpe:/o:microsoft:windows_xp:-:sp3::

Related

checkpoint_advisories 1
symantec 1
packetstorm 3
nessus 2
exploitpack 2
seebug 2
thn 3
cvelist 1
attackerkb 2
nvd 1
openvas 2
prion 1
zdt 3
metasploit 1
canvas 1
exploitdb 3
cisa_kev 1
threatpost 1
securityvulns 1
fireeye 1
kaspersky 1
checkpoint_advisories
checkpoint_advisories
Microsoft Windows NDProxy.sys Elevation of Privilege (CVE-2013-5065)
2013-11-28 00:00:00
symantec
symantec
Microsoft Windows Kernel 'NDProxy.sys' Local Privilege Escalation Vulnerability
2013-11-27 00:00:00
packetstorm
packetstorm
MS14-002 Windows NDProxy Privilege Escalation
2015-08-07 00:00:00
Microsoft Windows NDPROXY Local SYSTEM Privilege Escalation
2013-12-05 00:00:00
Microsoft Windows ndproxy.sys Local Privilege Escalation
2013-12-17 00:00:00
nessus
nessus
KB2914486: Vulnerability in Microsoft Windows Kernel Could Allow Elevation of Privilege
2013-11-29 00:00:00
MS14-002: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (2914368)
2014-01-14 00:00:00
exploitpack
exploitpack
Microsoft Windows - NDPROXY SYSTEM Privilege Escalation (MS14-002)
2013-12-03 00:00:00
Windows-NDPROXY-SYSTEM
2015-01-05 14:23:52
seebug
seebug
Windows NDPROXY - 本地权限提升漏洞(MS14-002)
2014-07-01 00:00:00
Microsoft Windows ndproxy.sys - Local Privilege Escalation
2014-07-01 00:00:00
thn
thn
Microsoft released Security Patch for CVE-2013-5065 TIFF Zero-Day vulnerability
2013-12-10 07:40:00
CVE-2013-5065: Microsoft Windows XP and Server 2003 Privilege escalation Zero-Day exploit discovered
2013-11-29 15:40:00
CVE-2013-5065: Microsoft Windows XP and Server 2003 Privilege escalation Zero-Day exploit discovered
2013-11-29 04:40:00
cvelist
cvelist
CVE-2013-5065
2013-11-27 23:00:00
attackerkb
attackerkb
CVE-2013-5065 Microsoft NDProxy.sys Privilege Escalation
2013-11-28 00:00:00
CVE-2013-5065
2013-11-28 00:00:00
nvd
nvd
CVE-2013-5065
2013-11-28 00:55:04
openvas
openvas
Microsoft Windows Kernel Privilege Escalation Vulnerability (2914368)
2013-12-02 00:00:00
Microsoft Windows Kernel Privilege Escalation Vulnerability (2914368)
2013-12-02 00:00:00
prion
prion
Code injection
2013-11-28 00:55:00
zdt
zdt
Windows NDProxy Privilege Escalation XP SP3 x86 and 2003 SP2 x86 (MS14-002) Exploit
2015-08-09 00:00:00
NDPROXY Local SYSTEM Privilege Escalation
2013-12-04 00:00:00
Microsoft Windows ndproxy.sys Local Privilege Escalation
2013-12-17 00:00:00
metasploit
metasploit
MS14-002 Microsoft Windows ndproxy.sys Local Privilege Escalation
2013-12-11 14:52:35
canvas
canvas
Immunity Canvas: NDPROXY
2013-11-28 00:55:00
exploitdb
exploitdb
Microsoft Windows - 'NDPROXY' SYSTEM Privilege Escalation (MS14-002)
2013-12-03 00:00:00
Microsoft Windows XP SP3 (x86) / 2003 SP2 (x86) - 'NDProxy' Local Privilege Escalation (MS14-002)
2015-08-07 00:00:00
Microsoft Windows - 'ndproxy.sys' Local Privilege Escalation (Metasploit)
2013-12-17 00:00:00
cisa_kev
cisa_kev
Microsoft Windows Kernel Privilege Escalation Vulnerability
2022-03-03 00:00:00
threatpost
threatpost
Epic Operation Kicks Off Multistage Turla APT Campaign
2014-08-07 10:00:03
securityvulns
securityvulns
Microsoft Windows security vulnerabilities
2014-01-15 00:00:00
fireeye
fireeye
CARBANAK Week Part Two: Continuing the CARBANAK Source Code Analysis
2019-04-23 17:45:00
kaspersky
kaspersky
KLA10601 Multiple vulnerabilities in Microsoft products
2014-11-11 00:00:00

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.3

Confidence

Low

EPSS

0.432

Percentile

97.4%

JSON
Related for CVE-2013-5065
checkpoint_advisories1symantec1packetstorm3nessus2exploitpack2seebug2thn3cvelist1attackerkb2nvd1openvas2prion1zdt3metasploit1canvas1exploitdb3cisa_kev1threatpost1securityvulns1fireeye1kaspersky1