|
|
|||
| Rule General Information |
|---|
| Release Date: | 2018-06-15 | |
| Rule Name: | Microsoft Internet Explorer 8 Remote Code Execution Vulnerability -2 (CVE-2013-1347) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly allocated or (2) is deleted, as exploited in the wild in May 2013. | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows | |
| Reference: | http://technet.microsoft.com/security/advisory/2847140 MicrosoftSecurityBulletin:ms13-038 ExploitDB:25294 http://www.us-cert.gov/ncas/alerts/TA13-134A |
|
| Solutions |
|---|
| The vendors have released upgrade patches to fix vulnerabilities, please visit: http://technet.microsoft.com/security/bulletin/ms13-038 |