Executive Summary
This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
| Informations | |||
|---|---|---|---|
| Name | TA13-190A | First vendor Publication | 2013-07-09 |
| Vendor | US-CERT | Last vendor Modification | 2013-07-09 |
| Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Overview Select Microsoft software products contain multiple vulnerabilities. Microsoft has released updates to address these vulnerabilities. DescriptionThe Microsoft Security Bulletin Summary for July 2013 describes multiple vulnerabilities in Microsoft software. Microsoft has released updates to address these vulnerabilities. ImpactThese vulnerabilities could allow remote code execution or elevation of privilege. SolutionApply Updates Microsoft has provided updates for these vulnerabilities in the Microsoft Security Bulletin Summary for July 2013, which describes any known issues related to the updates. Administrators are encouraged to note these issues and test for any potentially adverse effects. In addition, administrators should consider using an automated update distribution system such as Windows Server Update Services (WSUS). Home users are encouraged to enable automatic updates. |
Original Source
| Url : http://www.us-cert.gov/cas/techalerts/TA13-190A.html |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 70 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 15 % | CWE-264 | Permissions, Privileges, and Access Controls |
| 9 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 3 % | CWE-787 | Out-of-bounds Write (CWE/SANS Top 25) |
| 3 % | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25) |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:16815 | |||
| Oval ID: | oval:org.mitre.oval:def:16815 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3146 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3152. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3146 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 | Product(s): | Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:16821 | |||
| Oval ID: | oval:org.mitre.oval:def:16821 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3149 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3149 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 7 Microsoft Internet Explorer 8 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:16872 | |||
| Oval ID: | oval:org.mitre.oval:def:16872 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3145 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3150. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3145 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista | Product(s): | Microsoft Internet Explorer 9 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:16883 | |||
| Oval ID: | oval:org.mitre.oval:def:16883 | ||
| Title: | DirectShow Arbitrary Memory Overwrite Vulnerability - MS13-056 | ||
| Description: | DirectShow in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, and Windows Server 2012 allows remote attackers to execute arbitrary code via a crafted GIF file, aka "DirectShow Arbitrary Memory Overwrite Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3174 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2012 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:16892 | |||
| Oval ID: | oval:org.mitre.oval:def:16892 | ||
| Title: | Null pointer vulnerability in Microsoft Silverlight - CVE-2013-3178, MS13-052 (Mac OS) | ||
| Description: | Microsoft Silverlight 5 before 5.1.20513.0 does not properly initialize arrays, which allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via a crafted Silverlight application, aka "Null Pointer Vulnerability." | ||
| Family: | macos | Class: | vulnerability |
| Reference(s): | CVE-2013-3178 | Version: | 3 |
| Platform(s): | Apple Mac OS X Apple Mac OS X Server | Product(s): | Microsoft Silverlight 5 for Mac |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:16927 | |||
| Oval ID: | oval:org.mitre.oval:def:16927 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3153 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3148. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3153 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8 Microsoft Internet Explorer 9 Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:16966 | |||
| Oval ID: | oval:org.mitre.oval:def:16966 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3147 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 6 through 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3147 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8 Microsoft Internet Explorer 9 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:16975 | |||
| Oval ID: | oval:org.mitre.oval:def:16975 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3152 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3146. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3152 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 | Product(s): | Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:16998 | |||
| Oval ID: | oval:org.mitre.oval:def:16998 | ||
| Title: | WMV Video Decoder remote code execution vulnerability - MS13-057 | ||
| Description: | The Microsoft WMV video codec in wmv9vcm.dll, wmvdmod.dll in Windows Media Format Runtime 9 and 9.5, and wmvdecod.dll in Windows Media Format Runtime 11 and Windows Media Player 11 and 12 allows remote attackers to execute arbitrary code via a crafted media file, aka "WMV Video Decoder Remote Code Execution Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3127 | Version: | 15 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows Server 2012 Microsoft Windows Server 2008 R2 Microsoft Windows 7 Microsoft Windows 8 | Product(s): | Windows Media Format Runtime 9.0 Windows Media Format Runtime 9.5 Windows Media Format Runtime 11 Windows Media Player 12 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17012 | |||
| Oval ID: | oval:org.mitre.oval:def:17012 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3150 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3145. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3150 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista | Product(s): | Microsoft Internet Explorer 9 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17024 | |||
| Oval ID: | oval:org.mitre.oval:def:17024 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3144 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3151 and CVE-2013-3163. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3144 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 8 Microsoft Internet Explorer 9 Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17032 | |||
| Oval ID: | oval:org.mitre.oval:def:17032 | ||
| Title: | Array access violation vulnerability in Microsoft Silverlight CVE-2013-3131, MS13-052 (Mac OS) | ||
| Description: | Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5, and Silverlight 5 before 5.1.20513.0, does not properly prevent changes to data in multidimensional arrays of structures, which allows remote attackers to execute arbitrary code via (1) a crafted .NET Framework application or (2) a crafted Silverlight application, aka "Array Access Violation Vulnerability." | ||
| Family: | macos | Class: | vulnerability |
| Reference(s): | CVE-2013-3131 | Version: | 3 |
| Platform(s): | Apple Mac OS X Apple Mac OS X Server | Product(s): | Microsoft Silverlight 5 for Mac |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:17034 | |||
| Oval ID: | oval:org.mitre.oval:def:17034 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3148 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3153. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3148 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8 Microsoft Internet Explorer 9 Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17071 | |||
| Oval ID: | oval:org.mitre.oval:def:17071 | ||
| Title: | Array allocation vulnerability in the Common Language Runtime (CLR) in Microsoft .NET Framework - MS13-052 | ||
| Description: | The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 on 64-bit platforms does not properly allocate arrays of structures, which allows remote attackers to execute arbitrary code via a crafted .NET Framework application that changes array data, aka "Array Allocation Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3134 | Version: | 8 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft .NET Framework 2.0 Microsoft .NET Framework 3.5 Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.0 Microsoft .NET Framework 4.5 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17088 | |||
| Oval ID: | oval:org.mitre.oval:def:17088 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3151 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3144 and CVE-2013-3163. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3151 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 8 Microsoft Internet Explorer 9 Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17148 | |||
| Oval ID: | oval:org.mitre.oval:def:17148 | ||
| Title: | Win32k Buffer Overwrite Vulnerability - CVE-2013-3173 (MS13-053) | ||
| Description: | Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allows local users to gain privileges via a crafted application that leverages improper handling of objects in memory, aka "Win32k Buffer Overwrite Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3173 | Version: | 4 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 R2 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 7 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17190 | |||
| Oval ID: | oval:org.mitre.oval:def:17190 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3115 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 7 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3162. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3115 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 7 Microsoft Internet Explorer 8 Microsoft Internet Explorer 9 Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17205 | |||
| Oval ID: | oval:org.mitre.oval:def:17205 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3162 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 7 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3115. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3162 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 7 Microsoft Internet Explorer 8 Microsoft Internet Explorer 9 Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17253 | |||
| Oval ID: | oval:org.mitre.oval:def:17253 | ||
| Title: | Microsoft Windows Defender Improper Pathname Vulnerability - MS13-058 | ||
| Description: | The signature-update functionality in Windows Defender on Microsoft Windows 7 and Windows Server 2008 R2 relies on an incorrect pathname, which allows local users to gain privileges via a Trojan horse application in the %SYSTEMDRIVE% top-level directory, aka "Microsoft Windows 7 Defender Improper Pathname Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3154 | Version: | 9 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 R2 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17259 | |||
| Oval ID: | oval:org.mitre.oval:def:17259 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3143 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3161. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3143 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista | Product(s): | Microsoft Internet Explorer 9 Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17261 | |||
| Oval ID: | oval:org.mitre.oval:def:17261 | ||
| Title: | Array access violation vulnerability in Microsoft .NET Framework and Silverlight - MS13-052 | ||
| Description: | Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5, and Silverlight 5 before 5.1.20513.0, does not properly prevent changes to data in multidimensional arrays of structures, which allows remote attackers to execute arbitrary code via (1) a crafted .NET Framework application or (2) a crafted Silverlight application, aka "Array Access Violation Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3131 | Version: | 9 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft .NET Framework 2.0 Microsoft .NET Framework 3.5 Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.0 Microsoft .NET Framework 4.5 Microsoft Silverlight 5 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17273 | |||
| Oval ID: | oval:org.mitre.oval:def:17273 | ||
| Title: | Win32k Dereference Vulnerability - CVE-2013-1340 (MS13-053) | ||
| Description: | win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain privileges via a crafted application, aka "Win32k Dereference Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-1340 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 R2 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 7 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17293 | |||
| Oval ID: | oval:org.mitre.oval:def:17293 | ||
| Title: | Win32k Information Disclosure Vulnerability- CVE-2013-3167 (MS13-053) | ||
| Description: | win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 does not properly handle objects in memory, which allows local users to gain privileges via a crafted application, aka "Win32k Information Disclosure Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3167 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 R2 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17301 | |||
| Oval ID: | oval:org.mitre.oval:def:17301 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3161 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3143. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3161 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista | Product(s): | Microsoft Internet Explorer 9 Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17306 | |||
| Oval ID: | oval:org.mitre.oval:def:17306 | ||
| Title: | Cross-site scripting vulnerability in Internet Explorer - CVE-2013-3166 (MS13-055) | ||
| Description: | Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to inject arbitrary web script or HTML via vectors involving incorrect auto-selection of the Shift JIS encoding, leading to cross-domain scrolling events, aka "Shift JIS Character Encoding Vulnerability," a different vulnerability than CVE-2013-0015. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3166 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8 Microsoft Internet Explorer 9 Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17323 | |||
| Oval ID: | oval:org.mitre.oval:def:17323 | ||
| Title: | TrueType font parsing vulnerability in Microsoft Silverlight - CVE-2013-3129, MS13-052 (Mac OS) | ||
| Description: | Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5; Silverlight 5 before 5.1.20513.0; win32k.sys in the kernel-mode drivers, and GDI+, DirectWrite, and Journal, in Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT; GDI+ in Office 2003 SP3, 2007 SP3, and 2010 SP1; GDI+ in Visual Studio .NET 2003 SP1; and GDI+ in Lync 2010, 2010 Attendee, 2013, and Basic 2013 allow remote attackers to execute arbitrary code via a crafted TrueType Font (TTF) file, aka "TrueType Font Parsing Vulnerability." | ||
| Family: | macos | Class: | vulnerability |
| Reference(s): | CVE-2013-3129 | Version: | 3 |
| Platform(s): | Apple Mac OS X Apple Mac OS X Server | Product(s): | Microsoft Silverlight 5 for Mac |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:17341 | |||
| Oval ID: | oval:org.mitre.oval:def:17341 | ||
| Title: | TrueType Font Parsing Vulnerability - CVE-2013-3129 (MS13-052, MS13-053, MS13-054) | ||
| Description: | Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5; Silverlight 5 before 5.1.20513.0; win32k.sys in the kernel-mode drivers, and GDI+, DirectWrite, and Journal, in Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT; GDI+ in Office 2003 SP3, 2007 SP3, and 2010 SP1; GDI+ in Visual Studio .NET 2003 SP1; and GDI+ in Lync 2010, 2010 Attendee, 2013, and Basic 2013 allow remote attackers to execute arbitrary code via a crafted TrueType Font (TTF) file, aka "TrueType Font Parsing Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3129 | Version: | 23 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft .NET Framework 3.0 Microsoft .NET Framework 3.5 Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.0 Microsoft .NET Framework 4.5 Microsoft Silverlight 5 Microsoft Office 2003 Microsoft Office 2007 Microsoft Office 2010 Microsoft Lync 2010 Microsoft Lync Basic 2013 Microsoft Lync 2010 Attendee Microsoft Visual Studio .NET 2003 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17353 | |||
| Oval ID: | oval:org.mitre.oval:def:17353 | ||
| Title: | Win32k Memory Allocation Vulnerability- CVE-2013-1300 (MS13-053) | ||
| Description: | win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain privileges via a crafted application, aka "Win32k Memory Allocation Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-1300 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 R2 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 7 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17360 | |||
| Oval ID: | oval:org.mitre.oval:def:17360 | ||
| Title: | Win32k Read AV Vulnerability - CVE-2013-3660 (MS13-053) | ||
| Description: | The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, and Windows Server 2012 does not properly initialize a pointer for the next object in a certain list, which allows local users to obtain write access to the PATHRECORD chain, and consequently gain privileges, by triggering excessive consumption of paged memory and then making many FlattenPath function calls, aka "Win32k Read AV Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3660 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 R2 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 7 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17363 | |||
| Oval ID: | oval:org.mitre.oval:def:17363 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3163 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3144 and CVE-2013-3151. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3163 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 8 Microsoft Internet Explorer 9 Microsoft Internet Explorer 10 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17376 | |||
| Oval ID: | oval:org.mitre.oval:def:17376 | ||
| Title: | Memory corruption vulnerability in Internet Explorer - CVE-2013-3164 (MS13-055) | ||
| Description: | Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3164 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 8 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17379 | |||
| Oval ID: | oval:org.mitre.oval:def:17379 | ||
| Title: | Win32k Vulnerability - CVE-2013-1345 (MS13-053) | ||
| Description: | win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain privileges via a crafted application, aka "Win32k Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-1345 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 R2 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 7 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:17389 | |||
| Oval ID: | oval:org.mitre.oval:def:17389 | ||
| Title: | Null pointer vulnerability in Microsoft Silverlight - MS13-052 | ||
| Description: | Microsoft Silverlight 5 before 5.1.20513.0 does not properly initialize arrays, which allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via a crafted Silverlight application, aka "Null Pointer Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3178 | Version: | 5 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Silverlight 5 |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:17421 | |||
| Oval ID: | oval:org.mitre.oval:def:17421 | ||
| Title: | Anonymous method injection vulnerability in Microsoft .NET Framework - MS13-052 | ||
| Description: | Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check the permissions of objects that use reflection, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP) or (2) a crafted .NET Framework application, aka "Anonymous Method Injection Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-3133 | Version: | 8 |
| Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft .NET Framework 2.0 Microsoft .NET Framework 3.5 Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.0 Microsoft .NET Framework 4.5 |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
SAINT Exploits
| Description | Link |
|---|---|
| Internet Explorer Use-After-Free Memory Corruption (MS13-055) | More info here |
ExploitDB Exploits
| id | Description |
|---|---|
| 2014-05-06 | Windows NTUserMessageCall Win32k Kernel Pool Overflow (Schlamperei) |
| 2013-07-23 | DirectShow Arbitrary Memory Overwrite Vulnerability (MS13-056) |
| 2013-07-02 | Windows EPATHOBJ::pprFlattenRec Local Privilege Escalation |
Information Assurance Vulnerability Management (IAVM)
| Date | Description |
|---|---|
| 2013-07-11 | IAVM : 2013-A-0135 - Microsoft GDI+ Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0039199 |
| 2013-07-11 | IAVM : 2013-A-0134 - Microsoft DirectShow Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0039200 |
| 2013-07-11 | IAVM : 2013-A-0137 - Microsoft Windows Defender Privilege Escalation Vulnerability Severity : Category II - VMSKEY : V0039210 |
| 2013-07-11 | IAVM : 2013-B-0071 - Multiple Vulnerabilities in Microsoft .NET Framework and Silverlight Severity : Category II - VMSKEY : V0039211 |
| 2013-07-11 | IAVM : 2013-B-0072 - Microsoft Windows Media Format Runtime Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0039212 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2019-07-18 | Directshow GIF logical height overflow attempt RuleID : 50454 - Revision : 1 - Type : FILE-IMAGE |
| 2019-07-18 | Directshow GIF logical width overflow attempt RuleID : 50453 - Revision : 1 - Type : FILE-IMAGE |
| 2017-07-27 | Microsoft Internet Explorer use after free attempt RuleID : 43338 - Revision : 2 - Type : BROWSER-IE |
| 2017-07-27 | Microsoft Internet Explorer use after free attempt RuleID : 43337 - Revision : 2 - Type : BROWSER-IE |
| 2016-09-01 | Microsoft Internet Explorer use after free attempt RuleID : 39764 - Revision : 2 - Type : BROWSER-IE |
| 2016-09-01 | Microsoft Internet Explorer use after free attempt RuleID : 39763 - Revision : 2 - Type : BROWSER-IE |
| 2016-03-14 | Microsoft Windows FlattenPath paged memory consumption privilege escalation a... RuleID : 36384 - Revision : 3 - Type : OS-WINDOWS |
| 2016-03-14 | Microsoft Windows FlattenPath paged memory consumption privilege escalation a... RuleID : 36383 - Revision : 3 - Type : OS-WINDOWS |
| 2014-06-07 | Microsoft Windows NtUserMessageCall implementation exploitation attempt RuleID : 30940 - Revision : 5 - Type : FILE-EXECUTABLE |
| 2014-06-07 | Microsoft Windows NtUserMessageCall implementation exploitation attempt RuleID : 30939 - Revision : 5 - Type : FILE-EXECUTABLE |
| 2014-01-10 | Microsoft Internet Explorer beforeeditfocus use after free exploit attempt RuleID : 28855 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer beforeeditfocus use after free exploit attempt RuleID : 28854 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer CPhraseElement use after free attempt RuleID : 27909 - Revision : 6 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer CPhraseElement use after free attempt RuleID : 27908 - Revision : 6 - Type : BROWSER-IE |
| 2014-01-10 | Directshow GIF logical height overflow attempt RuleID : 27530 - Revision : 8 - Type : FILE-IMAGE |
| 2014-01-10 | Directshow GIF logical height overflow attempt RuleID : 27529 - Revision : 9 - Type : FILE-IMAGE |
| 2014-01-10 | Directshow GIF logical width overflow attempt RuleID : 27528 - Revision : 9 - Type : FILE-IMAGE |
| 2014-01-10 | Directshow GIF logical height overflow attempt RuleID : 27527 - Revision : 9 - Type : FILE-IMAGE |
| 2014-01-10 | Directshow GIF logical height overflow attempt RuleID : 27526 - Revision : 10 - Type : FILE-IMAGE |
| 2014-01-10 | Directshow GIF logical width overflow attempt RuleID : 27525 - Revision : 11 - Type : FILE-IMAGE |
| 2014-01-10 | Microsoft Windows FlattenPath paged memory consumption privilege escalation a... RuleID : 27231 - Revision : 4 - Type : OS-WINDOWS |
| 2014-01-10 | Microsoft Internet Explorer use after free attempt RuleID : 27172 - Revision : 5 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer use after free attempt RuleID : 27171 - Revision : 6 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer table column-count integer overflow attempt RuleID : 27157 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer table column-count integer overflow attempt RuleID : 27156 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer pElement member use after free attempt RuleID : 27154 - Revision : 2 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer use after free attempt RuleID : 27153 - Revision : 5 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer use after free attempt RuleID : 27152 - Revision : 6 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer use after free attempt RuleID : 27151 - Revision : 6 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer use after free attempt RuleID : 27150 - Revision : 7 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer beforeeditfocus use after free exploit attempt RuleID : 27149 - Revision : 5 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer beforeeditfocus use after free exploit attempt RuleID : 27148 - Revision : 5 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer 9 IE5 compatibility mode use after free attempt RuleID : 27147 - Revision : 2 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Windows .NET CLR mutlidimensional array handling remote code execut... RuleID : 27139 - Revision : 3 - Type : OS-WINDOWS |
| 2014-01-10 | Microsoft Internet Explorer CTreeNode use after free memory corruption attempt RuleID : 27138 - Revision : 6 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer CTreeNode use after free memory corruption attempt RuleID : 27137 - Revision : 7 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Windows .NET CLR mutlidimensional array handling remote code execut... RuleID : 27136 - Revision : 4 - Type : OS-WINDOWS |
| 2014-01-10 | Microsoft Internet Explorer 10 CTreePos use after free attempt RuleID : 27135 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer display node use after free attempt RuleID : 27134 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer display node use after free attempt RuleID : 27133 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer PreviousTreePos use after free attempt RuleID : 27132 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer 8 CTreePos use after free attempt RuleID : 27131 - Revision : 2 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer 9 use after free attempt RuleID : 27130 - Revision : 2 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer 9 use after free attempt RuleID : 27129 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer 10 CTreePos use-after-free attempt RuleID : 27128 - Revision : 2 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer 10 CTreePos use-after-free attempt RuleID : 27127 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer setCapture use after free attempt RuleID : 27126 - Revision : 3 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Windows FlattenPath paged memory consumption privilege escalation a... RuleID : 26922 - Revision : 6 - Type : OS-WINDOWS |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2013-07-10 | Name : A multimedia application framework installed on the remote Mac OS X host is a... File : macosx_ms13-052.nasl - Type : ACT_GATHER_INFO |
| 2013-07-10 | Name : The .NET Framework install on the remote Windows host could allow arbitrary c... File : smb_nt_ms13-052.nasl - Type : ACT_GATHER_INFO |
| 2013-07-10 | Name : The Windows kernel on the remote host is affected by multiple vulnerabilities. File : smb_nt_ms13-053.nasl - Type : ACT_GATHER_INFO |
| 2013-07-10 | Name : The remote Windows host has a remote code execution vulnerability. File : smb_nt_ms13-054.nasl - Type : ACT_GATHER_INFO |
| 2013-07-10 | Name : The remote host is affected by multiple code execution vulnerabilities. File : smb_nt_ms13-055.nasl - Type : ACT_GATHER_INFO |
| 2013-07-10 | Name : The remote Windows host is potentially affected by a remote code execution vu... File : smb_nt_ms13-056.nasl - Type : ACT_GATHER_INFO |
| 2013-07-10 | Name : The remote Windows host is potentially affected by a remote code execution vu... File : smb_nt_ms13-057.nasl - Type : ACT_GATHER_INFO |
| 2013-07-10 | Name : The remote host is affected by a privilege escalation vulnerability. File : smb_nt_ms13-058.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2013-07-20 17:22:17 |
|
| 2013-07-20 13:22:30 |
|
| 2013-07-16 17:18:34 |
|
