Lucene search

K
cve[email protected]CVE-2013-6791
HistoryNov 29, 2013 - 3:55 p.m.

CVE-2013-6791

2013-11-2915:55:03
CWE-200
web.nvd.nist.gov
20
microsoft
emet
cve-2013-6791
address predictability
aslr
rop
nvd

6.5 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

76.1%

Microsoft Enhanced Mitigation Experience Toolkit (EMET) before 4.0 uses predictable addresses for hooked functions, which makes it easier for context-dependent attackers to defeat the ASLR protection mechanism via a return-oriented programming (ROP) attack.

Affected configurations

NVD
Node
microsoftenhanced_mitigation_experience_toolkitRange3.0

6.5 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

76.1%

Related for CVE-2013-6791