Lucene search

K

PRIOn knowledge basePRION:CVE-2013-5065

HistoryNov 28, 2013 - 12:55 a.m.

Code injection

2013-11-2800:55:00

PRIOn knowledge base

www.prio-n.com

1

6.6 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

21.4%

NDProxy.sys in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application, as exploited in the wild in November 2013.

References

technet.microsoft.com/security/advisory/2914486

www.fireeye.com/blog/technical/cyber-exploits/2013/11/ms-windows-local-privilege-escalation-zero-day-in-the-wild.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-002

www.exploit-db.com/exploits/37732/

6.6 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

21.4%

Related for PRION:CVE-2013-5065

checkpoint_advisories1 packetstorm3 symantec1 nessus2 exploitpack2 thn3 seebug2 attackerkb2 openvas2 canvas1 zdt3 cve1 metasploit1 cisa_kev1 exploitdb3 threatpost1 securityvulns1 fireeye1 kaspersky1