Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-2557

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2013-2557
Last Modified 16 Mar 2013 12:00:00
Published 11 Mar 2013 06:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2013-2557

Summary

The sandbox protection mechanism in Microsoft Internet Explorer 9 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors, as demonstrated against Adobe Flash Player by VUPEN during a Pwn2Own competition at CanSecWest 2013.

Vulnerable Systems

Application

  • Microsoft Internet Explorer 9


References

MISC - http://twitter.com/VUPEN/statuses/309713355466227713

MISC - http://twitter.com/thezdi/statuses/309756927301283840

MISC - http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2Own-2013/ba-p/5981157


Last Updated: 27 May 2016 10:44:50