Vulnerability Details CVE-2013-0096
Writer in Microsoft Windows Essentials 2011 and 2012 allows remote attackers to bypass proxy settings and overwrite arbitrary files via crafted URL parameters, aka "Windows Essentials Improper URI Handling Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.431
EPSS Ranking 97.4%
CVSS Severity
CVSS v2 Score 6.8
References
- http://www.us-cert.gov/ncas/alerts/TA13-134A
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-045
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16204
- http://www.us-cert.gov/ncas/alerts/TA13-134A
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-045
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16204
Products affected by CVE-2013-0096
-
cpe:2.3:a:microsoft:windows_essentials:2011
-
cpe:2.3:a:microsoft:windows_essentials:2012