Vulnerability Details CVE-2013-5045
Microsoft Internet Explorer 10 and 11 allows local users to bypass the Protected Mode protection mechanism, and consequently gain privileges, by leveraging the ability to execute sandboxed code, aka "Internet Explorer Elevation of Privilege Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.166
EPSS Ranking 94.6%
CVSS Severity
CVSS v2 Score 6.2
References
- http://packetstormsecurity.com/files/127245/MS13-097-Registry-Symlink-IE-Sandbox-Escape.html
- http://www.exploit-db.com/exploits/33893
- http://www.osvdb.org/100757
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-097
- http://packetstormsecurity.com/files/127245/MS13-097-Registry-Symlink-IE-Sandbox-Escape.html
- http://www.exploit-db.com/exploits/33893
- http://www.osvdb.org/100757
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-097
Products affected by CVE-2013-5045
-
cpe:2.3:a:microsoft:internet_explorer:10
-
cpe:2.3:a:microsoft:internet_explorer:11