CVE-2013-5045

Microsoft Internet Explorer 10 and 11 allows local users to bypass the Protected Mode protection mechanism, and consequently gain privileges, by leveraging the ability to execute sandboxed code, aka "Internet Explorer Elevation of Privilege Vulnerability."

Published: Dec 11, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-5045
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.2
AV:L/AC:H/Au:N/C:C/I:C/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
microsoft / internet_explorer	10	10.x
microsoft / internet_explorer	11	11.x

http://packetstormsecurity.com/files/127245/MS13-097-Registry-Symlink-IE-Sandbox-Escape.html
http://www.exploit-db.com/exploits/33893
http://www.osvdb.org/100757
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-097

Vulnerability Database

289,599

CVE-2013-5045