Vulnerabilities > CVE-2013-2552 - Remote Code Execution vulnerability in Microsoft Internet Explorer 10
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Unspecified vulnerability in Microsoft Internet Explorer 10 on Windows 8 allows remote attackers to bypass the sandbox protection mechanism by leveraging access to a Medium integrity process, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 | |
| OS | 2 |
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 58569 CVE(CAN) ID: CVE-2013-2552 Microsoft Internet Explorer是微软公司推出的一款网页浏览器。 Windows 8上的Microsoft Internet Explorer 10存在不明细节漏洞,可允许远程攻击者绕过沙盒保护机制。 0 Microsoft Internet Explorer 10 厂商补丁: Microsoft --------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.microsoft.com/windows/ie/default.asp |
| id | SSV:60699 |
| last seen | 2017-11-19 |
| modified | 2013-03-20 |
| published | 2013-03-20 |
| reporter | Root |
| title | Microsoft Internet Explorer 不明细节远程代码执行漏洞(CVE-2013-2552) |