CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-6791

Microsoft Enhanced Mitigation Experience Toolkit (EMET) before 4.0 uses predictable addresses for hooked functions, which makes it easier for context-dependent attackers to defeat the ASLR protection mechanism via a return-oriented programming (ROP) attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.183

EPSS Ranking 95.0%

CVSS Severity

CVSS v2 Score 4.3

References

http://blogs.technet.com/b/srd/archive/2013/06/17/emet-4-0-now-available-for-download.aspx
http://en.nsfocus.com/advisories/1301.html
http://www.securitytracker.com/id/1029411
http://blogs.technet.com/b/srd/archive/2013/06/17/emet-4-0-now-available-for-download.aspx
http://en.nsfocus.com/advisories/1301.html
http://www.securitytracker.com/id/1029411

Products affected by CVE-2013-6791

Microsoft » Enhanced Mitigation Experience Toolkit » Version: 3.0

cpe:2.3:a:microsoft:enhanced_mitigation_experience_toolkit:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-6791

Products

Pricing

Contact Us