Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-2552

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2013-2552
Last Modified 16 Mar 2013 12:00:00
Published 11 Mar 2013 06:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2013-2552

Summary

Unspecified vulnerability in Microsoft Internet Explorer 10 on Windows 8 allows remote attackers to bypass the sandbox protection mechanism by leveraging access to a Medium integrity process, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.

Vulnerable Systems

Application

  • Microsoft Internet Explorer 10


References

MISC - http://twitter.com/VUPEN/statuses/309479075385327617

MISC - http://twitter.com/thezdi/statuses/309452625173176320

MISC - http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2Own-2013/ba-p/5981157


Last Updated: 27 May 2016 10:47:24