Lucene search
HistoryMay 05, 2013 - 11:07 a.m.
CVE-2013-1347
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
Low
0.973 High
EPSS
Percentile
99.9%
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly allocated or (2) is deleted, as exploited in the wild in May 2013.
Affected configurations
Node
microsoftinternet_explorerMatch8
microsoftwindows_7Match-sp1x64
ORmicrosoftwindows_7Match-sp1x86
ORmicrosoftwindows_server_2003sp2
ORmicrosoftwindows_server_2008sp2x64
ORmicrosoftwindows_server_2008sp2x86
ORmicrosoftwindows_vistasp2
ORmicrosoftwindows_vistaMatch-sp2
ORmicrosoftwindows_xpsp2professional
ORmicrosoftwindows_xpsp3
ORmicrosoftwindows_xpMatch-sp2x64
ORmicrosoftwindows_xpMatchsp2professionalx64
Related
cert
cert
threatpost
threatpost
Microsoft Patches IE Zero Day Used In Watering Hole Attack
2013-05-14 16:14:18
USAID a Target of DoL Watering Hole Attackers
2013-05-13 10:52:56
IE 8 Zero Day Widens Scope of DoL Watering Hole Attack
2013-05-06 11:14:47
saint
saint
Internet Explorer CGenericElement Object Use-after-free Vulnerability
2013-05-08 00:00:00
Internet Explorer CGenericElement Object Use-after-free Vulnerability
2013-05-08 00:00:00
Internet Explorer CGenericElement Object Use-after-free Vulnerability
2013-05-08 00:00:00
symantec
symantec
nessus
nessus
openvas
openvas
MS Internet Explorer Remote Code Execution Vulnerability (2847140)
2013-05-06 00:00:00
Microsoft Internet Explorer Remote Code Execution Vulnerability (2847140)
2013-05-06 00:00:00
cisa_kev
cisa_kev
Microsoft Internet Explorer Remote Code Execution Vulnerability
2022-03-03 00:00:00
prion
prion
Code injection
2013-05-05 11:07:00
seebug
seebug
Microsoft Internet Explorer ιζΎειη¨θΏη¨δ»£η ζ§θ‘ζΌζ΄(CVE-2013-1347)(MS13-038)
2013-05-17 00:00:00
Microsoft IE 8θΏη¨δ»£η ζ§θ‘ζΌζ΄(CVE-2013-1347)
2013-05-07 00:00:00
checkpoint_advisories
checkpoint_advisories
packetstorm
packetstorm
Microsoft Internet Explorer CGenericElement Object Use-After-Free
2013-05-07 00:00:00
cve
cve
CVE-2013-1347
2013-05-05 11:07:00
zdt
zdt
Microsoft Internet Explorer CGenericElement Object Use-After-Free
2013-05-07 00:00:00
attackerkb
attackerkb
Microsoft Internet Explorer CGenericElement Use-After-Free
2013-05-05 00:00:00
Microsoft Internet Explorer SetMouseCapture Use-After-Free
2020-10-14 00:00:00
cvelist
cvelist
CVE-2013-1347
2013-05-05 10:00:00
securityvulns
securityvulns
Microsoft Internet Explorer multiple security vulnerabilities
2013-05-27 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
Low
0.973 High
EPSS
Percentile
99.9%
Related for NVD:CVE-2013-1347