CVE-2013-0019
published 2013-02-13CVE-2013-0019: Use-after-free vulnerability in Microsoft Internet Explorer 7 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers…
PriorityP263critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
34.92%
98.2th percentile
Use-after-free vulnerability in Microsoft Internet Explorer 7 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer COmWindowProxy Use After Free Vulnerability."
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Exploit triggers a use-after-free via window.open() to a crafted XML resource followed by a timed navigation to 'about:blank', causing access to a deleted COmWindowProxy object ↗
- →Vulnerability class is use-after-free in COmWindowProxy; monitor for IE processes accessing freed memory after navigating a named iframe to about:blank shortly after opening an XML resource ↗
- →Affected versions are Internet Explorer 7 through 10; detections should target iexplore.exe on those versions processing crafted web content ↗
- ·The exploit was discovered via fuzzing and the original detailed analysis was not preserved; only a repro and high-level advisory details are available ↗
- ·The setTimeout delay of 1000ms is specific to the proof-of-concept repro; real-world exploits may use different timing to trigger the race condition ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Zscaler
Zscaler found Multiple Security Vulnerabilities | 02-12-2013
blogs_zscaler·CVSS 9.3
[CRITICAL] Zscaler found Multiple Security Vulnerabilities | 02-12-2013
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
Bugzilla
CVE-2013-1836 moodle: Unauthorized settings editing through WebDav repository (MSA-13-0019)
bugzilla·2013-03-25·CVSS 6.5
CVE-2013-1836 [MEDIUM] CVE-2013-1836 moodle: Unauthorized settings editing through WebDav repository (MSA-13-0019)
CVE-2013-1836 moodle: Unauthorized settings editing through WebDav repository (MSA-13-0019)
A security flaw was found in the way Moodle, a course management system, protected access to the site-wide WebDav repositories. A remote attacker (valid Moodle user) could use this flaw to in an unauthorized way to alter (view, edit, and delete) content of the site-wide WebDav repositories.
References:
[1] http://www.openwall.com/lists/oss-security/2013/03/25/2
Relevant upstream patches:
[2] http://git.moodle.org/gw?p=moodle.git;a=commit;h=ac5fc5953426befb1232106ade9e42ff239d9b63
[3] http://git.moodle.org/gw?p=moodle.git;a=commit;h=bd6581935d5e4f3138b7e1029fe17af4e306db60
[4] http://git.moodle.org/gw?p=moodle.git;a=commit;h=da9d3a1205377c027d7b476903bdbd520dd240d0
[5] http://git.moodle.org/gw?p=m
http://blog.skylined.nl/20161202001.htmlhttp://www.us-cert.gov/cas/techalerts/TA13-043B.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-009https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16465https://www.exploit-db.com/exploits/40879/http://blog.skylined.nl/20161202001.htmlhttp://www.us-cert.gov/cas/techalerts/TA13-043B.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-009https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16465https://www.exploit-db.com/exploits/40879/
2013-02-13
Published