CVE

Id
62498  
CVE No.
CVE-2013-2551  
Status
Candidate  
Description
Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013, aka "Internet Explorer Use After Free Vulnerability," a different vulnerability than CVE-2013-1308 and CVE-2013-1309.  
Phase
Assigned (20130310)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
625400 62498 CVE-2013-2551 MISC:http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2Own-2013/ba-p/5981157  View
625401 62498 CVE-2013-2551 MISC:http://twitter.com/VUPEN/statuses/309479075385327617  View
625402 62498 CVE-2013-2551 MISC:http://twitter.com/thezdi/statuses/309452625173176320  View
625403 62498 CVE-2013-2551 MS:MS13-037  View
625404 62498 CVE-2013-2551 URL:http://technet.microsoft.com/security/bulletin/MS13-037  View
625405 62498 CVE-2013-2551 CERT:TA13-134A  View
625406 62498 CVE-2013-2551 URL:http://www.us-cert.gov/ncas/alerts/TA13-134A  View
625407 62498 CVE-2013-2551 OVAL:oval:org.mitre.oval:def:16317  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
20250 JVNDB-2013-001825 複数の Microsoft Windows 製品における ASLR 保護メカニズムを回避される脆弱性 複数の Microsoft Windows 製品には、ASLR 保護メカニズムを回避される脆弱性が存在します。 CVE-2013-2556 62498 7.5 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-001825.html  View