Test ID:	1.3.6.1.4.1.25623.1.0.804004
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Internet Explorer Multiple Memory Corruption Vulnerabilities (2879017)
Summary:	This host is missing a critical security update according to Microsoft; Bulletin MS13-080.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS13-080. Vulnerability Insight: Multiple flaws are due to: - Use-after-free error within mshtml.dll when handling certain objects. - Use-after-free error when handling the 'onpropertychange' event in CDisplayPointer. - Multiple unspecified errors. Vulnerability Impact: Successful exploitation will allow attackers to corrupt memory by the execution of arbitrary code in the context of the current user. Affected Software/OS: - Microsoft Internet Explorer version 6.x/7.x/8.x/9.x/10.x - Microsoft Internet Explorer version 11.x on Microsoft Windows 8.1 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-3871 Cert/CC Advisory: TA13-317A http://www.us-cert.gov/ncas/alerts/TA13-317A Microsoft Security Bulletin: MS13-080 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-080 Microsoft Security Bulletin: MS13-088 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-088 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18936 Common Vulnerability Exposure (CVE) ID: CVE-2013-3872 Cert/CC Advisory: TA13-288A http://www.us-cert.gov/ncas/alerts/TA13-288A https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18601 Common Vulnerability Exposure (CVE) ID: CVE-2013-3873 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19060 Common Vulnerability Exposure (CVE) ID: CVE-2013-3874 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18793 Common Vulnerability Exposure (CVE) ID: CVE-2013-3875 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18909 Common Vulnerability Exposure (CVE) ID: CVE-2013-3882 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18366 Common Vulnerability Exposure (CVE) ID: CVE-2013-3885 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18817 Common Vulnerability Exposure (CVE) ID: CVE-2013-3886 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18811 Common Vulnerability Exposure (CVE) ID: CVE-2013-3893 BugTraq ID: 62453 http://www.securityfocus.com/bid/62453 http://jvn.jp/en/jp/JVN27443259/index.html http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-000093.html http://packetstormsecurity.com/files/162585/Microsoft-Internet-Explorer-8-SetMouseCapture-Use-After-Free.html http://pastebin.com/raw.php?i=Hx1L5gu6 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18665 Common Vulnerability Exposure (CVE) ID: CVE-2013-3897 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18989
Copyright	Copyright (C) 2013 Greenbone Networks GmbH

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.