CVE-2013-3143 — Vulnetix

Try Vulnetix Request Demo

CVE-2013-3143 PUBLISHED CVSS 9.300000190734863 CRITICAL

Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3161.

EPSS 30.99% · 96.7th percentile

Risk Scores

CVSS v2.0

9.300000190734863

EPSS Score

30.99%

96.7th percentile

Affected Products

Vendor	Product	Versions
microsoft	internet_explorer	9, 10
n/a	n/a	n/a

Timeline

Jul 10, 2013 CVE Published
Sep 10, 2013 PoC Published
Dec 15, 2016 PoC Published
Dec 16, 2016 PoC Published
Feb 4, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Mar 7, 2023 EPSS Score
Apr 5, 2023 EPSS Score
May 19, 2023 EPSS Score

References

oval:org.mitre.oval:def:17259 vdb
http://blog.skylined.nl/20161214001.html url
40923 exploit
MS13-055 vendor-advisory
http://packetstormsecurity.com/files/140166/Microsoft-Internet-Explorer-9-IEFRAME-CMarkup..RemovePointerPos-Use-After-Free.html url
TA13-190A third-party-advisory
https://nvd.nist.gov/vuln/detail/CVE-2013-3143 advisory
https://www.exploit-db.com/exploits/40923 url

Open in Interactive Console →