CVE-2013-2552 — Microsoft Internet Explorer vulnerability

2 documents2 sources

Severity

7.5HIGHNVD

EPSS

13.0%

top 5.90%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Internet Explorer

Timeline

PublishedMar 11

Latest updateMay 17

Description

Unspecified vulnerability in Microsoft Internet Explorer 10 on Windows 8 allows remote attackers to bypass the sandbox protection mechanism by leveraging access to a Medium integrity process, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/internet_explorer10

🔴Vulnerability Details

GHSA

GHSA-vxg3-xg36-58j3: Unspecified vulnerability in Microsoft Internet Explorer 10 on Windows 8 allows remote attackers to bypass the sandbox protection mechanism by leverag↗2022-05-17

▶