NVD

Id
37525  
Name
CVE-2013-1285  
Description
The USB kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, and Windows Server 2012 do not properly handle objects in memory, which allows physically proximate attackers to execute arbitrary code by connecting a crafted USB device, aka "Windows USB Descriptor Vulnerability," a different vulnerability than CVE-2013-1286 and CVE-2013-1287.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2013-03-12  
Modified Date
2013-11-02  
Seq
2013-1285  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
191072 37525 CVE-2013-1285 oval:org.mitre.oval:def:16441  View
191073 37525 CVE-2013-1285 MS13-027  View
191074 37525 CVE-2013-1285 TA13-071A  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
20236 JVNDB-2013-001811 Microsoft Windows の USB カーネルモードドライバにおける任意のコードを実行される脆弱性 Microsoft Windows の USB カーネルモードドライバは、メモリ内のオブジェクトを適切に処理しないため、任意のコードを実行される脆弱性が存在します。 CVE-2013-1285 61227 CVE-2013-1285 37525 7.2 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-001811.html 2013-03-12 2013-03-18 View