Executive Summary

Informations
NameCVE-2013-3906First vendor Publication2013-11-06
VendorCveLast vendor Modification2014-01-17

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score9.3Attack RangeNetwork
Cvss Impact Score10Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

GDI+ in Microsoft Windows Vista SP2 and Server 2008 SP2; Office 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Office Compatibility Pack SP3; and Lync 2010, 2010 Attendee, 2013, and Basic 2013 allows remote attackers to execute arbitrary code via a crafted TIFF image, as demonstrated by an image in a Word document, and exploited in the wild in October and November 2013.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3906

CWE : Common Weakness Enumeration

idName
CWE-94Failure to Control Generation of Code ('Code Injection')

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:21019
 
Oval ID: oval:org.mitre.oval:def:21019
Title: Microsoft Graphics Component Memory Corruption Vulnerability (CVE-2013-3906) - MS13-096
Description: GDI+ in Microsoft Windows Vista SP2 and Server 2008 SP2; Office 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Office Compatibility Pack SP3; and Lync 2010, 2010 Attendee, 2013, and Basic 2013 allows remote attackers to execute arbitrary code via a crafted TIFF image, as demonstrated by an image in a Word document, and exploited in the wild in October and November 2013.
Family: windows Class: vulnerability
Reference(s): CVE-2013-3906
Version: 8
Platform(s): Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Product(s): Microsoft Office 2003
Microsoft Office 2007
Microsoft Office 2010
Microsoft Word Viewer
Microsoft Excel Viewer 2007
Microsoft PowerPoint Viewer 2010
Microsoft Lync 2010
Microsoft Lync Basic 2013
Microsoft Lync 2010 Attendee
Microsoft Office Compatibility Pack
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application5
Application2
Application6
Os3
Os2

ExploitDB Exploits

idDescription
2013-12-03Microsoft Tagged Image File Format (TIFF) Integer Overflow

Information Assurance Vulnerability Management (IAVM)

DateDescription
2013-12-12IAVM : 2013-A-0225 - Microsoft GDI Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0042593

Snort® IPS/IDS

DateDescription
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28526 - Revision : 3 - Type : FILE-OFFICE
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28525 - Revision : 3 - Type : FILE-OFFICE
2014-01-10Microsoft GDI library TIFF handling memory corruption attempt
RuleID : 28488 - Revision : 1 - Type : WEB-CLIENT
2014-01-10Microsoft GDI library TIFF handling memory corruption attempt
RuleID : 28487 - Revision : 1 - Type : WEB-CLIENT
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28473 - Revision : 3 - Type : FILE-OFFICE
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28472 - Revision : 3 - Type : FILE-OFFICE
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28471 - Revision : 4 - Type : FILE-OFFICE
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28470 - Revision : 4 - Type : FILE-OFFICE
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28469 - Revision : 4 - Type : FILE-OFFICE
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28468 - Revision : 4 - Type : FILE-OFFICE
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28467 - Revision : 4 - Type : FILE-OFFICE
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28466 - Revision : 4 - Type : FILE-OFFICE
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28465 - Revision : 4 - Type : FILE-OFFICE
2014-01-10Microsoft Office GDI library TIFF handling integer overflow attempt
RuleID : 28464 - Revision : 4 - Type : FILE-OFFICE

Metasploit Database

idDescription
2013-11-05 MS13-096 Microsoft Tagged Image File Format (TIFF) Integer Overflow

Nessus® Vulnerability Scanner

DateDescription
2013-12-11Name : The remote Windows host has a remote code execution vulnerability.
File : smb_nt_ms13-096.nasl - Type : ACT_GATHER_INFO

Internal Sources (Detail)

SourceUrl
CONFIRMhttp://blogs.technet.com/b/srd/archive/2013/11/05/cve-2013-3906-a-graphics-vu...
http://technet.microsoft.com/security/advisory/2896666
EXPLOIT-DBhttp://www.exploit-db.com/exploits/30011
MISChttp://blogs.mcafee.com/mcafee-labs/mcafee-labs-detects-zero-day-exploit-targ...
MShttp://technet.microsoft.com/security/bulletin/MS13-096

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
DateInformations
2014-02-17 11:21:33
  • Multiple Updates
2014-01-19 21:29:33
  • Multiple Updates
2014-01-17 13:19:41
  • Multiple Updates
2014-01-03 17:19:04
  • Multiple Updates
2013-12-13 21:19:25
  • Multiple Updates
2013-12-13 13:19:40
  • Multiple Updates
2013-12-04 00:18:30
  • Multiple Updates
2013-11-26 05:19:27
  • Multiple Updates
2013-11-07 13:24:21
  • Multiple Updates
2013-11-06 21:27:59
  • First insertion