Lucene search
HistoryMar 13, 2013 - 12:55 a.m.
CVE-2013-1288
cve-2013-1288
use-after-free vulnerability
microsoft internet explorer 8
remote attackers
arbitrary code
crafted web site
access to a deleted object
internet explorer ctreenode use after free vulnerability
nvd
7.3 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.924 High
EPSS
Percentile
99.0%
Use-after-free vulnerability in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka “Internet Explorer CTreeNode Use After Free Vulnerability.”
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:internet_explorer | microsoft internet explorer | eq | 8 |
Related
checkpoint_advisories
checkpoint_advisories
symantec
symantec
prion
prion
Design/Logic Flaw
2013-03-13 00:55:00
threatpost
threatpost
Critical IE, Windows Kernel Flaws Patched
2013-03-12 18:28:50
fireeye
fireeye
openvas
openvas
nessus
nessus
MS13-021: Security Update for Internet Explorer (2809289)
2013-03-12 00:00:00
mskb
mskb
MS13-021: Cumulative Security Update for Internet Explorer: March 12, 2013
2013-03-12 00:00:00
securityvulns
securityvulns
Microsoft Internet Explorer multiple security vulnerabilities
2013-03-24 00:00:00
7.3 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.924 High
EPSS
Percentile
99.0%
Related for CVE-2013-1288